An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS before 6.1.0 allows attackers to execute a directory traversal.
"https://github.com/pypa/advisory-database/blob/main/vulns/openc3/PYSEC-2025-257.yaml"