Vulnerabilities

CVE-2018-25181 - Musicco 2.0.0 Arbitrary Directory Download via Path Traversal

2026-03-06 0 views admin
CVE-2018-25181 - Musicco 2.0.0 Arbitrary Directory Download via Path Traversal

CVE ID : CVE-2018-25181 Published : March 6, 2026, 12:19 p.m. | 39 minutes ago Description : Musicco 2.0.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary directories by manipulating the parent parameter. Attackers can supply directory traversal sequences in the parent parameter of the getAlbum endpoint to access sensitive system directories and download them as ZIP files. Severity: 8.7 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Severity
HIGH
Published
March 6, 2026
Impact: path traversal

🏷️ Tags

25181musiccoarbitrarydirectorydownloadtraversalpublishedminutescve

More from Vulnerabilities

CVE-2025-70363 - Ibexa Ciril GROUP eZ Platform Unauthenticated Data Access Vulnerability

CVE-2025-70363 - Ibexa Ciril GROUP eZ Platform Unauthenticated Data Access Vulnerability

2026-03-06 0
CVE-2025-69645 - Apache Binutils Denial-of-Service Vulnerability

CVE-2025-69645 - Apache Binutils Denial-of-Service Vulnerability

2026-03-06 0
CVE-2025-69644 -

CVE-2025-69644 -

2026-03-06 0
CVE-2025-69651 - Apache GNU Binutils Denial of Service (DoS) Vulnerability

CVE-2025-69651 - Apache GNU Binutils Denial of Service (DoS) Vulnerability

2026-03-06 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views