{"description":"Trending threats, MITRE ATT\u0026CK coverage, and detection metadata — refreshed continuously.","feed_url":"https://feed.craftedsignal.io/tags/cve-2025-60946/","home_page_url":"https://feed.craftedsignal.io/","items":[{"_cs_actors":[],"_cs_cves":[],"_cs_exploited":false,"_cs_products":[],"_cs_severities":["high"],"_cs_tags":["path-traversal","cve-2025-60946","web-application"],"_cs_type":"advisory","_cs_vendors":[],"content_html":"\u003cp\u003eCensus CSWeb 8.0.1 is vulnerable to path traversal (CVE-2025-60946). A remote, authenticated attacker can supply arbitrary file path input and access unintended file directories. This allows the attacker to read sensitive files or potentially overwrite existing files, leading to information disclosure or code execution. The vulnerability was reported on March 23, 2026, and is fixed in version 8.1.0 alpha. Defenders should upgrade to the patched version to prevent potential exploitation of this…\u003c/p\u003e\n","date_modified":"2026-03-24T12:00:00Z","date_published":"2026-03-24T12:00:00Z","id":"/briefs/2026-03-census-csweb-path-traversal/","summary":"CVE-2025-60946 details a vulnerability in Census CSWeb 8.0.1, where arbitrary file path input is permitted, allowing a remote, authenticated attacker to access unintended file directories.","title":"Census CSWeb 8.0.1 Path Traversal Vulnerability (CVE-2025-60946)","url":"https://feed.craftedsignal.io/briefs/2026-03-census-csweb-path-traversal/"}],"language":"en","title":"CraftedSignal Threat Feed — Cve-2025-60946","version":"https://jsonfeed.org/version/1.1"}