Vulnerability Database

317,107

Total vulnerabilities in the database

CVE-2025-67004

An Information Disclosure vulnerability in CouchCMS 2.4 allow an Admin user to read arbitrary files via traversing directories back after back. It can Disclosure the source code or any other confidential information if weaponize accordingly.

Published: Jan 9, 2026
Updated: Jan 10, 2026
CVE: CVE-2025-67004
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

No affected software listed.

https://gist.github.com/thepiyushkumarshukla/d01f8004c43692f18c75548f4739955a
https://github.com/CouchCMS/CouchCMS
https://www.couchcms.com/

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo