7 matches found
EUVD-2025-21180
Malicious code in bioql PyPI...
CVE-2025-7452
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...
CVE-2025-7452 kone-net go-chat Endpoint file_controller.go GetFile path traversal
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...
CVE-2025-7452
CVE-2025-7452 affects kone-net go-chat (Endpoint component). The GetFile function in go-chat/api/v1/file_controller.go is vulnerable to path traversal via the fileName argument, allowing remote exploitation. Exploitation is disclosed publicly; credits indicate a Proof-of-Concept. The rolling-rele...
CVE-2025-7452 kone-net go-chat Endpoint file_controller.go GetFile path traversal
A vulnerability was found in kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63. It has been declared as critical. This vulnerability affects the function GetFile of the file go-chat/api/v1/filecontroller.go of the component Endpoint. The manipulation of the argument fileName leads t...
PT-2025-29271 · Unknown · Kone-Net Go-Chat
Name of the Vulnerable Software and Affected Versions: kone-net go-chat affected versions not specified Description: A critical issue exists in the Endpoint component of kone-net go-chat. The GetFile function within go-chat/api/v1/file controller.go is susceptible to path traversal due to...
go-chat 路径遍历漏洞
go-chat is a KONENET open source WebSocket-based communication and chat software using Go. A path traversal vulnerability exists in go-chat, which stems from a path traversal caused by the fileName operation...