CVE-2025-41428 – TimeWorks Path Traversal Vulnerability

CVE ID : CVE-2025-41428

Published : June 3, 2025, 8:15 a.m. | 2 hours, 14 minutes ago

Description : Improper limitation of a pathname to a restricted directory (‘Path Traversal’) issue exists in TimeWorks 10.0 to 10.3. If exploited, arbitrary JSON files on the server may be viewed by a remote unauthenticated attacker.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…