4 matches found
CVE-2025-49588
Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In version 2.10.2, the server accepts links of format file:///etc/passwd and doesn't do any validation before sending them to parsers and playwright, this can result in leak of other...
CVE-2025-49588
Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In version 2.10.2, the server accepts links of format file:///etc/passwd and doesn't do any validation before sending them to parsers and playwright, this can result in leak of other...
CVE-2025-49588 Linkwarden Local File Inclusion Vulnerability
Linkwarden is a self-hosted, open-source collaborative bookmark manager to collect, organize and archive webpages. In version 2.10.2, the server accepts links of format file:///etc/passwd and doesn't do any validation before sending them to parsers and playwright, this can result in leak of other...
CVE-2025-49588
Linkwarden 2.10.2 is affected by a Local File Inclusion-style vulnerability where unvalidated file:/// links are passed to parsers/playwright, potentially leaking other users’ links and, in some cases, environment secrets. The issue is mitigated by upgrading to version 2.10.3, which has a fix tha...