Vulnerabilities > CVE-2025-27274 - Path Traversal: '.../...//' vulnerability in Axelkeller GPX Viewer

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

NVD

Published: 2025-03-03

Updated: 2025-03-07

Summary

Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. This issue affects GPX Viewer: from n/a through 2.2.11.

Vulnerable Configurations

Part	Description	Count
Application	Axelkeller Axelkeller GPX Viewer *	1

Common Weakness Enumeration (CWE)

CWE-35 - Path Traversal: '.../...//'

References

https://patchstack.com/database/wordpress/plugin/gpx-viewer/vulnerability/wordpress-gpx-viewer-plugin-2-2-11-path-traversal-vulnerability?_s_id=cve

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.