Vulnerability Details CVE-2025-51057
A local file inclusion (LFI) vulnerability in Vedo Suite version 2024.17 allows remote authenticated attackers to read arbitrary filesystem files by exploiting an unsanitized 'readfile()' function call in '/api_vedo/video/preview'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.1%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-51057
-
cpe:2.3:a:vedo_suite_project:vedo_suite:2024.17