CNNVD-202507-3360 Information

CNNVD ID

CNNVD-202507-3360

Related CVE

CVE-2025-50185

• CNNVD Published: 2025-07-26

Description (Chinese)

DbGate是DbGate开源的一个数据库管理器。 DbGate 6.6.0及之前版本存在安全漏洞，该漏洞源于文件路径验证不足，可能导致未授权文件访问。

Description (English)

DbGate is a database manager for DbGate open source. There is a security gap in DbGate 6.6.0 and previous versions, which stems from inadequate document routing, which may lead to unauthorized document access.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

DbGate

Published

2025-07-26

Last Modified

2026-02-24

References

https://github.com/dbgate/dbgate/blob/v6.6.0/plugins/dbgate-plugin-csv/src/backend/reader.js#L71-L102 https://github.com/dbgate/dbgate/security/advisories/GHSA-7x75-fmx7-q6h9 https://access.redhat.com/security/cve/cve-2025-50185