CVE-2025-67845

Publication date

2025-12-19 00:00:00

Family

mitre

State

PUBLISHED

Description

A Directory Traversal vulnerability in the Static Asset Proxy Endpoint in Mintlify Platform before 2025-11-15 allows remote attackers to inject arbitrary web script or HTML via a crafted URL containing path traversal sequences.