CVE-2025-54140 | pyLoad 0.5.0b3.dev89 Uploaded File Name /json/upload path traversal (GHSA-xqpg-92fq-grfg)

A vulnerability classified as critical was found in pyLoad 0.5.0b3.dev89. Affected by this vulnerability is an unknown functionality of the file /json/upload of the component Uploaded File Name Handler. The manipulation leads to path traversal.

This vulnerability is known as CVE-2025-54140. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More