QwikSec

Security Database

CVE

CWE

Training

CVE-2025-46822

Published: May 21, 2025

Modified: May 21, 2025

PUBLISHED

Description

OsamaTaher/Java-springboot-codebase is a collection of Java and Spring Boot code snippets, applications, and projects. Prior to commit c835c6f7799eacada4c0fc77e0816f250af01ad2, insufficient path traversal mechanisms make absolute path traversal possible. This vulnerability allows unauthorized access to sensitive internal files. Commit c835c6f7799eacada4c0fc77e0816f250af01ad2 contains a patch for the issue.

Vendor	Product	Versions
OsamaTaher	Java-springboot-codebase	affected `< c835c6f7799eacada4c0fc77e0816f250af01ad2`

Weaknesses (CWE)

References

https://github.com/OsamaTaher/Java-springboot-codebase/security/advisories/GHSA-q6mm-cm37-w637

x_refsource_CONFIRM

https://github.com/OsamaTaher/Java-springboot-codebase/commit/c835c6f7799eacada4c0fc77e0816f250af01ad2

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.