CVE-2025-13810 identifies a path traversal vulnerability in jsnjfz WebStack-Guns version 1.0, located in the renderPicture function within the KaptchaController.java source file. Path traversal vulnerabilities occur when an application fails to properly sanitize user-supplied input used in file path construction, allowing attackers to navigate the file system beyond intended directories. In this case, remote attackers can manipulate the input parameters to access arbitrary files on the server, potentially exposing sensitive information or configuration files. The vulnerability requires no authentication or user interaction, making it easier to exploit remotely over the network. The CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P) indicates network attack vector, low complexity, no privileges or user interaction needed, and partial confidentiality impact only. Although an exploit has been publicly disclosed, there are no confirmed reports of exploitation in the wild. The vendor was contacted early but has not responded or provided a patch, leaving users exposed. The lack of patch or mitigation guidance increases risk for organizations relying on this software. The vulnerability affects only version 1.0 of WebStack-Guns, a Java-based web framework, which may be used in various enterprise or web applications. Without proper input validation and path sanitization, attackers can leverage this flaw to read sensitive files, potentially leading to information disclosure or aiding further attacks.

The primary impact of CVE-2025-13810 is unauthorized disclosure of sensitive information due to path traversal, which can compromise confidentiality. Attackers may access configuration files, source code, credentials, or other critical data stored on the server. This information can facilitate further exploitation, privilege escalation, or lateral movement within an organization’s network. Since the vulnerability requires no authentication or user interaction, it can be exploited by any remote attacker scanning for vulnerable instances, increasing the attack surface. Organizations using WebStack-Guns 1.0 in production environments face risks of data breaches, regulatory non-compliance, and reputational damage. The absence of vendor response and patches prolongs exposure, potentially inviting automated exploitation once public exploits circulate widely. While availability and integrity impacts are not directly indicated, the information disclosure alone can have severe consequences, especially in sensitive or regulated sectors. The medium CVSS score reflects the moderate but significant risk posed by this vulnerability.

To mitigate CVE-2025-13810, organizations should immediately audit their use of jsnjfz WebStack-Guns version 1.0 and consider the following specific actions: 1) Implement strict input validation and sanitization on all parameters used in file path construction, ensuring that user input cannot contain directory traversal sequences such as '../'. 2) Employ allowlists for file access, restricting file operations to specific directories or files necessary for application functionality. 3) Use secure coding practices to avoid direct concatenation of user input into file paths; instead, leverage safe APIs that canonicalize and validate paths. 4) Monitor web server and application logs for suspicious requests containing traversal patterns or attempts to access sensitive files. 5) If possible, isolate the affected application in a restricted environment with minimal file system permissions to limit exposure. 6) Engage in active threat hunting for signs of exploitation attempts and prepare incident response plans. 7) Contact the vendor or community for updates or patches, and consider migrating to alternative frameworks if no fix is forthcoming. 8) Employ web application firewalls (WAFs) with rules designed to detect and block path traversal attempts. These targeted measures go beyond generic advice and address the specific nature of this vulnerability.