CVE-2025-4511 – Vector4Wang Spring-Boot-Quick Remote Path Traversal Vulnerability

May 10, 2025

CVE ID : CVE-2025-4511

Published : May 10, 2025, 7:15 p.m. | 1 hour, 8 minutes ago

Description : A vulnerability was found in vector4wang spring-boot-quick up to 20250422. It has been rated as critical. This issue affects the function ResponseEntity of the file /spring-boot-quick-master/quick-img2txt/src/main/java/com/quick/controller/Img2TxtController.java of the component quick-img2txt. The manipulation leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4512 – Inetum IODAS Cross-Site Scripting Vulnerability

Next Article CVE-2025-4510 – Changjietong UFIDA CRM SQL Injection

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

SteelSeries’ latest wireless mouse is cheap and colorful — but is this the one to spend your money on?

DistroWatch Weekly, Issue 1128

Your Slack app is getting a big upgrade – here’s how to try the new AI features

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

Microsoft’s Copilot+ has been here over a year and I still don’t care about it — but I do wish I had one of its features

SteelSeries’ latest wireless mouse is cheap and colorful — but is this the one to spend your money on?

Microsoft confirms Windows 11 25H2, might make Windows more stable

CVE-2025-4511 – Vector4Wang Spring-Boot-Quick Remote Path Traversal Vulnerability

Synology ABM Flaw (CVE-2025-4679) Leaks Global Client Secret, Exposing ALL Microsoft 365 Tenants

D-Link DIR-816 Router Alert: 6 Critical Flaws (CVSS 9.8) Allow Remote Code Execution, NO PATCHES

Xpano is an automated photo stitching tool

CVE-2025-46340 – Misskey CSS Injection Vulnerability

CVE-2025-52827 – UXPER Nuss Untrusted Data Deserialization Object Injection

CVE-2025-1565 – WordPress Mayosis Core Plugin Arbitrary File Read Vulnerability

A Code Implementation of a Real‑Time In‑Memory Sensor Alert Pipeline in Google Colab with FastStream, RabbitMQ, TestRabbitBroker, Pydantic

CVE-2025-32445 Privilege Escalation Flaw in Argo Events

OpenAI Releases Reinforcement Fine-Tuning (RFT) on o4-mini: A Step Forward in Custom Model Optimization

CVE-2025-4272 – Mechrevo Control Console DLL Search Path Vulnerability

CVE-2025-4511 – Vector4Wang Spring-Boot-Quick Remote Path Traversal Vulnerability

Related Posts