cleantalk
Vulnerabilities and Security Researches

Tainacan, CVE-2025-47512

CVE, Research URL

CVE-2025-47512

Home page URL

Security reports for Tainacan

Application

Tainacan

Published on
May 23, 2025
Research Description
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in tainacan Tainacan allows Path Traversal. This issue affects Tainacan: from n/a through 0.21.14.
Affected versions
Min -, max 0.21.15.
Status
vulnerable
Previous vulnerability researches
WooCommerce Shipping & Tax (d6228e99d68810fc638ec1e0c7ddcc9b649a8527) , Jun 07, 2024
WooCommerce Shipping & Tax , Apr 21, 2025
New vulnerability
Tainacan (CVE-2025-47512) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-4223) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2024-13427) , May 25, 2025
miniOrange Discord Integration (CVE-2025-47672) , May 25, 2025
4stats (CVE-2025-3869) , May 24, 2025