CVE-2025-10468 | THREATINT

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Beyaz Computer CityPlus allows Path Traversal.This issue affects CityPlus: before 24.29375.

PUBLISHED Reserved 2025-09-15 | Published 2025-09-19 | Updated 2025-09-19 | Assigner TR-CERT

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status

unaffected

Any version before 24.29375

affected

Credits

Abdullah Beyhan finder

References

www.usom.gov.tr/bildirim/tr-25-0279

cve.org (CVE-2025-10468)

nvd.nist.gov (CVE-2025-10468)

Download JSON