{"vulnerability": "cve-2025-6773", "sightings": [{"uuid": "47168d6d-7bdb-4062-bc88-3eaf9e1e480b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6773", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19779", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6773\n\ud83d\udd25 CVSS Score: 4.8 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X)\n\ud83d\udd39 Description: A vulnerability was found in HKUDS LightRAG up to 1.3.8. It has been declared as critical. Affected by this vulnerability is the function upload_to_input_dir of the file lightrag/api/routers/document_routes.py of the component File Upload. The manipulation of the argument file.filename leads to path traversal. It is possible to launch the attack on the local host. The identifier of the patch is 60777d535b719631680bcf5d0969bdef79ca4eaf. It is recommended to apply a patch to fix this issue.\n\ud83d\udccf Published: 2025-06-27T19:00:17.695Z\n\ud83d\udccf Modified: 2025-06-27T19:21:27.100Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.314089\n2. https://vuldb.com/?ctiid.314089\n3. https://vuldb.com/?submit.601276\n4. https://github.com/HKUDS/LightRAG/issues/1692\n5. https://github.com/HKUDS/LightRAG/issues/1692#issuecomment-3009368235\n6. https://github.com/HKUDS/LightRAG/commit/60777d535b719631680bcf5d0969bdef79ca4eaf", "creation_timestamp": "2025-06-27T19:52:02.000000Z"}, {"uuid": "410b8334-1d4f-402d-bd24-e696cc9251f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67738", "type": "seen", "source": "https://gist.github.com/dohyun4455/3e6d2720295079f2315f3f87844c68b7", "content": "", "creation_timestamp": "2026-05-17T15:25:44.000000Z"}, {"uuid": "2bf240b4-3e7f-4238-b6ea-9049a6d756b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67738", "type": "seen", "source": "https://gist.github.com/dohyun4455/0153f5bf20c868cd82dca3e99a9e70a4", "content": "", "creation_timestamp": "2026-05-17T15:23:15.000000Z"}, {"uuid": "6c9969fe-df5b-4b74-8f9e-cd1991dae598", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67738", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7p3jrohgb2e", "content": "", "creation_timestamp": "2025-12-11T07:48:39.656165Z"}, {"uuid": "15f47b6d-17b8-4993-b802-fba77165c2dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mcctlphjie2i", "content": "", "creation_timestamp": "2026-01-13T15:10:13.096548Z"}, {"uuid": "f9523d2f-aa13-4616-881b-56ccef1ff3bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mcx3sbyy2t2o", "content": "", "creation_timestamp": "2026-01-21T16:30:19.027634Z"}, {"uuid": "35cade07-c488-4ce8-b0c0-efc6311b076a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3meqri7iqpx22", "content": "", "creation_timestamp": "2026-02-13T15:00:08.266637Z"}, {"uuid": "89b627e5-2769-47c1-8897-cf97ce6077b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67739", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7q4dryn6d2q", "content": "", "creation_timestamp": "2025-12-11T17:35:52.723951Z"}, {"uuid": "98016369-eca6-4fea-81fe-1b15b406a751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67731", "type": "seen", "source": "https://gist.github.com/Darkcrai86/2756abaaa1dcf5a53166979da1a694d9", "content": "", "creation_timestamp": "2025-12-12T08:08:01.000000Z"}, {"uuid": "fadc4c4c-2bd0-4401-8083-0ace0658f3c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67731", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7rpzwwmwi2y", "content": "", "creation_timestamp": "2025-12-12T09:00:56.390230Z"}, {"uuid": "7c13e38e-17af-425e-b46a-109a44b895b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-67731", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/115705791154466416", "content": "", "creation_timestamp": "2025-12-12T09:04:22.282962Z"}, {"uuid": "45eaff25-7c04-4096-b339-fe027f5468d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-67731", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m7rqa3lq3v2j", "content": "", "creation_timestamp": "2025-12-12T09:04:23.241041Z"}, {"uuid": "8d631052-6b7a-417f-adad-fcbf528125e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67731", "type": "seen", "source": "https://gist.github.com/Darkcrai86/4b054f05a9878828fd9c933d2824bb9d", "content": "", "creation_timestamp": "2025-12-12T09:37:38.000000Z"}, {"uuid": "c9ca56bf-b022-49fe-83de-620775e5bbf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67730", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mc7ipgysnv2g", "content": "", "creation_timestamp": "2026-01-12T07:17:28.361950Z"}, {"uuid": "6e98ebf3-a0d8-4059-8460-2a0289165fa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfkinnkzsp2c", "content": "", "creation_timestamp": "2026-02-23T20:31:19.649332Z"}, {"uuid": "9f7b2af2-aeb4-4a6f-963f-4716ddf883d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfkimlakdt25", "content": "", "creation_timestamp": "2026-02-23T20:30:43.851105Z"}, {"uuid": "9fbf73c8-f81f-4d66-98c1-82e88e0714c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfkknzebdh24", "content": "", "creation_timestamp": "2026-02-23T21:07:19.411008Z"}, {"uuid": "e7694207-4c39-439f-947a-48d85c0ffc3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mftuxb2hgv2v", "content": "", "creation_timestamp": "2026-02-27T14:05:24.796010Z"}, {"uuid": "28f8019e-dd20-4ce6-965a-bae657c20182", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67730", "type": "published-proof-of-concept", "source": "Telegram/lAdyWIii7qOqzP25MDlOiugnGJyq509QFKqLPj04_1zA-jM", "content": "", "creation_timestamp": "2026-01-01T09:00:05.000000Z"}, {"uuid": "c309d02f-39d5-4cf7-9362-f5b80acf27fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1833", "content": "", "creation_timestamp": "2026-04-21T21:00:00.000000Z"}, {"uuid": "a1fa30e9-d2a0-4569-b6f6-931b7c841613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mm5cgf5cqk2c", "content": "", "creation_timestamp": "2026-05-18T16:31:43.171457Z"}, {"uuid": "a7114b62-396c-47ee-b2e1-5b6f54daa32e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mm5cgbfax22c", "content": "", "creation_timestamp": "2026-05-18T16:31:42.501007Z"}, {"uuid": "52d71c03-6609-4912-becf-aa2790218bc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mm5cg6627k2c", "content": "", "creation_timestamp": "2026-05-18T16:31:41.745705Z"}, {"uuid": "9450c8fb-4ade-4659-a5d0-e06a137cca6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6773", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsmju4fxyu23", "content": "", "creation_timestamp": "2025-06-27T20:59:28.502017Z"}, {"uuid": "b04d37e1-43c2-4eb3-8a8e-fa7899d6a787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://mastodon.social/users/chrisvest/statuses/115724864576648010", "content": "", "creation_timestamp": "2025-12-15T17:55:00.956396Z"}, {"uuid": "41c72921-d727-4dc6-bab2-5ba611288ab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67736", "type": "seen", "source": "https://gist.github.com/Darkcrai86/eec9ae5d886ef54e3a0260ebc010b82a", "content": "", "creation_timestamp": "2025-12-16T07:44:09.000000Z"}, {"uuid": "5219fe3e-f451-4bac-9f3f-d5452a2b9e2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67736", "type": "seen", "source": "https://gist.github.com/Darkcrai86/198164d7e69dfb12d84bf6acd9738029", "content": "", "creation_timestamp": "2025-12-16T08:02:15.000000Z"}, {"uuid": "ac7aa87b-bca9-4185-bfee-8716c7f483a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67732", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mbpopleedi2x", "content": "", "creation_timestamp": "2026-01-06T00:22:18.928214Z"}, {"uuid": "d669ebc2-b3c8-48e7-bbf7-09c36a3a735d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67732", "type": "seen", "source": "https://bsky.app/profile/cyberdudebivash.bsky.social/post/3mbsm6sfymc2p", "content": "", "creation_timestamp": "2026-01-07T04:15:13.276925Z"}, {"uuid": "7d714e5b-d088-437a-835d-c17d408121fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-67733", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mfpokjd67724", "content": "", "creation_timestamp": "2026-02-25T22:00:15.513849Z"}, {"uuid": "9e291ac5-d9e2-4516-a883-7d7f814c59c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1729", "content": "", "creation_timestamp": "2026-01-21T04:00:00.000000Z"}, {"uuid": "fc1d02be-e037-4bb9-88e7-c2b706e12fae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0315/", "content": "", "creation_timestamp": "2026-03-18T00:00:00.000000Z"}, {"uuid": "e96a38ff-f7d8-4e22-8ffc-6e4a970b614a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67735", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bbcbc485-b88d-4831-b8e9-6e37e7bd9875", "content": "", "creation_timestamp": "2026-01-21T21:18:16.771453Z"}, {"uuid": "53290d48-ecc4-432e-81ae-06b6ff479c97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-67732", "type": "seen", "source": "Telegram/DM3pgu0_RzgLvzG-bb0EsBJeE-HNavxIR4FBWximsYdDyCg", "content": "", "creation_timestamp": "2026-01-05T23:05:27.000000Z"}]}