CVE-2025-67718 | formio Form.io up to 3.5.6/4.4.2 on Serverless API Endpoint case sensitivity (GHSA-m654-769v-qjv7)

A vulnerability classified as problematic was found in formio Form.io up to 3.5.6/4.4.2 on Serverless. The impacted element is an unknown function of the component API Endpoint. Such manipulation leads to improper handling of case sensitivity.

This vulnerability is traded as CVE-2025-67718. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More