How broadly exploitable is this vulnerability?

Exploitability depends on how the host application uses retrieved_contexts. If untrusted users can directly or indirectly influence these values, the vulnerability can be broadly exploitable through public or internal APIs that invoke ImageTextPromptValue.

Does an attacker need authenticated access?

That depends on the application integration. In some deployments, only authenticated users or internal services can supply retrieved_contexts, while in others, anonymous users may be able to control this input via public endpoints. The key requirement is the ability to affect the multimodal context URLs.

What is the safest general fix pattern?

The most robust fix is to strictly constrain what locations can be accessed: enforce allowlisted URL schemes and hosts, avoid interpreting arbitrary inputs as filesystem paths, and ensure any path-based access is restricted to a clearly defined directory with canonicalization and traversal checks.

Severity:

HIGH RISK

(7.5)

Path Traversal Arbitrary File Read (CWE-22) in Exploding Gradients RAGAS ImageTextPromptValue

CVE-2025-45691

Published:

Mar 5, 2026

Status:

Awaiting Analysis

Summary

Affected Context

Exploit Preconditions

Why This Happens

Potential Impact

General Mitigation Guidance

How Teams Detect Issues Like This

Frequently Asked Questions

Source

NDV

Recent Vulnerabilities

CWE-78

CRITICAL RISK

CRITICAL

(9.9)

Command Injection in MCP Stdio Configuration Validation (CWE-78) in WeKnora

Remote Code Execution

March 7, 2026

CWE-89

CRITICAL RISK

CRITICAL

(9.9)

SQL Injection via PostgreSQL Array/Row Expressions (CWE-89) in WeKnora Query Engine

Remote Code Execution via SQL Injection on the Database Server

March 7, 2026

Vulnerability Type

Category:

Path Traversal / Arbitrary File Read

CWE:

CWE-22

Impact:

Arbitrary File Read / Sensitive Data Exposure

Severity:

HIGH RISK

(7.5)

CVSS Version:

3.1

Vulnerability Type

Category:

Path Traversal / Arbitrary File Read

CWE:

CWE-22

Impact:

Arbitrary File Read / Sensitive Data Exposure

Severity:

HIGH RISK

(7.5)

CVSS Version:

3.1

Catch This CVE While Code Is Being Written

Detect vulnerable code directly in pull requests, so CVEs are fixed before merge.

Get Started

Ship clean & secure code faster

START 14 DAYS FREE TRIAL

BOOK A DEMO

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Made with Love in San Francisco

355 Bryant St. San Francisco, CA 94107, USA

Ask AI for summary of CodeAnt

Path Traversal Arbitrary File Read (CWE-22) in Exploding Gradients RAGAS ImageTextPromptValue

Summary

Affected Context

Exploit Preconditions

Why This Happens

Potential Impact

General Mitigation Guidance

How Teams Detect Issues Like This

Frequently Asked Questions

Source

Recent Vulnerabilities

CRITICAL RISK

CRITICAL

(9.9)

Command Injection in MCP Stdio Configuration Validation (CWE-78) in WeKnora

CRITICAL RISK

CRITICAL

(9.9)

SQL Injection via PostgreSQL Array/Row Expressions (CWE-89) in WeKnora Query Engine

Vulnerability Type

Vulnerability Type

Vulnerability Type

Catch This CVE While Code Is Being Written

Ship clean & secure code faster

Product

Pricing

Company

Legal

Developers

Compare

Product

Pricing

Company

Legal

Developers

Compare

Product

Pricing

Company

Legal

Developers

Compare