National Cyber Warfare Foundation (NCWF)

Vite Arbitrary File Read vulnerability (CVE-2025-30208)
0 user ratings		2025-03-28 15:12:35
milo
Blue Team (CND)

Overview Recently, NSFOCUS CERT detected that Vite issued a security announcement and fixed the arbitrary file reading vulnerability of Vite (CVE-2025-30208). Since the Vite development server does not strictly verify the path when processing URL requests, unauthenticated attackers can bypass path access restrictions by constructing special URLs to obtain sensitive files outside the project root […]


The post Vite Arbitrary File Read vulnerability (CVE-2025-30208) appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..


The post Vite Arbitrary File Read vulnerability (CVE-2025-30208) appeared first on Security Boulevard.



NSFOCUS

Source: Security Boulevard
Source Link: https://securityboulevard.com/2025/03/vite-arbitrary-file-read-vulnerability-cve-2025-30208/?utm_source=rss&utm_medium=rss&utm_campaign=vite-arbitrary-file-read-vulnerability-cve-2025-30208

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.