CVE-2025-54140
BaseFortify
Publication date: 2025-07-22
Last updated on: 2025-07-25
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| pyload | pyload | * |
| pyload | pyload | 0.5.0b3.dev90 |
| pyload | pyload | 0.5.0b3.dev89 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an authenticated path traversal issue in the /json/upload endpoint of pyLoad version 0.5.0b3.dev89. By manipulating the filename of an uploaded file, an attacker can escape the intended upload directory and write arbitrary files anywhere on the system where pyLoad has access.
How can this vulnerability impact me? :
The vulnerability can lead to Remote Code Execution (RCE), local privilege escalation, system-wide compromise, persistence, and installation of backdoors, potentially allowing an attacker to fully control the affected system.
What immediate steps should I take to mitigate this vulnerability?
Upgrade pyLoad to version 0.5.0b3.dev90 or later, where the authenticated path traversal vulnerability in the /json/upload endpoint is fixed. Until the upgrade, restrict access to the /json/upload endpoint to trusted users only and monitor for any suspicious file uploads that may attempt path traversal.