CVE-2025-68472

HIGH

MindsDB < 25.11.1 - Unauthenticated Path Traversal and Arbitrary File Read via File Upload API

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-68472. PoCs published by ExploreUnknowed.

AI-analyzed exploit summary The PoC demonstrates a path traversal vulnerability combined with SQL injection to leak file contents. It sends a PUT request to upload a malicious file path and then queries the database to retrieve the leaked data.

Description

MindsDB is a platform for building artificial intelligence from enterprise data. Prior to version 25.11.1, an unauthenticated path traversal in the file upload API lets any caller read arbitrary files from the server filesystem and move them into MindsDB’s storage, exposing sensitive data. The PUT handler in file.py directly joins user-controlled data into a filesystem path when the request body is JSON and source_type is not "url". Only multipart uploads and URL-sourced uploads receive sanitization; JSON uploads lack any call to clear_filename or equivalent checks. This vulnerability is fixed in 25.11.1.

Exploits (1)

nomisec WORKING POC

by ExploreUnknowed · poc

https://github.com/ExploreUnknowed/CVE-2025-68472

View Code ZIP pw:eip

The PoC demonstrates a path traversal vulnerability combined with SQL injection to leak file contents. It sends a PUT request to upload a malicious file path and then queries the database to retrieve the leaked data.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Unknown (likely a web application with API endpoints)

No auth needed

Prerequisites: Network access to the target API endpoints

MITRE ATT&CK

T1005 - Data from Local System T1505 - Server Software Component

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Vendor Advisory x_refsource_confirm

https://github.com/mindsdb/mindsdb/security/advisories/GHSA-qqhf-pm3j-96g7

Various Sources

https://www.bluerock.io/post/cve-2025-68472-mindsdb-file-upload-path-traversal

Scores

CVSS v3 8.1

EPSS 0.0064

EPSS Percentile 71.0%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-22 CWE-23 CWE-36

Status published

Products (2)

mindsdb/mindsdb < 25.11.1

pypi/MindsDB 0 - 25.11.1PyPI

Published Jan 12, 2026

Tracked Since Feb 18, 2026