Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/04/30 9:21 p.m.17 views

CVE-2025-0049

When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0...

4.3CVSS6.9AI score0.00213EPSS
Exploits0References1
NVD
NVD
added 2025/04/28 9:15 p.m.24 views

CVE-2025-0049

When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0...

4.3CVSS0.00213EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/28 8:55 p.m.16 views

CVE-2025-0049 Disclosure of sensitive information in an error message in GoAnywhere prior to version 7.8.0

When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0...

3.5CVSS4.1AI score0.00213EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/28 8:55 p.m.29 views

CVE-2025-0049 Disclosure of sensitive information in an error message in GoAnywhere prior to version 7.8.0

When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0...

3.5CVSS0.00213EPSS
Exploits0References1
Rows per page
Query Builder