CVE-2025-0049

Common Vulnerabilities and Exposures

Last Post by kajal 6 days ago

1 Posts

1 Users

0 Reactions

39 Views

RSS

kajal

(@kajal)

Posts: 356

Reputable Member

Topic starter

Description

When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0.

References

https://www.fortra.com/security/advisories/product-security/fi-2025-004

https://nvd.nist.gov/vuln/detail/CVE-2025-0049

Posted : 26/01/2026 11:31 pm

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed