CVE-2025-2305 | Syncpilot Live Contract up to 5.4.11/5.5.3/5.6.2 path traversal

A vulnerability classified as critical was found in Syncpilot Live Contract up to 5.4.11/5.5.3/5.6.2. Affected by this vulnerability is an unknown functionality. The manipulation leads to path traversal.

This vulnerability is known as CVE-2025-2305. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More