MEDIUM🇬🇧 English

CVE-2026-24125

CVSS 6.3v3.1pub. 2026-03-12upd. 2026-03-13

Tina is a headless content management system. Prior to 2.1.2, TinaCMS allows users to create, update, and delete content documents using relative file paths (relativePath, newRelativePath) via GraphQL mutations. Under certain conditions, these paths are combined with the collection path using path.join() without validating that the resolved path remains within the collection root directory. Because path.join() does not prevent directory traversal, paths containing ../ sequences can escape the intended directory boundary. This vulnerability is fixed in 2.1.2.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
  • Ssw Tinacms\/graphql

    APP
    Ssw
    < 2.1.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Path Traversal
CWE
Referencje

Powiązane podatności

CVE-2026-33949HIGH8.1ten sam produkt

Tina is a headless content management system. Prior to version 2.2.2, a path traversal vulnerability in @tinac...

CVE-2026-34604HIGH7.1ten sam produkt

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/graphql uses string-based path ...

CVE-2025-68278HIGH7.3ten sam produkt

Tina is a headless content management system. In tinacms prior to version 3.1.1, tinacms uses the gray-matter ...

CVE-2026-28792CRITICAL9.6PL ✓ten sam vendor

TinaCMS CLI: path traversal + CORS umożliwiają atak drive-by na deweloperów

CVE-2026-34603HIGH7.1ten sam vendor

Tina is a headless content management system. Prior to version 2.2.2, @tinacms/cli recently added lexical path...