TROYANOSYVIRUS
Back to CVEs

CVE-2025-44137

HIGH
8.2

Description

MapTiler Tileserver-php v2.0 is vulnerable to Directory Traversal. The renderTile function within tileserver.php is responsible for delivering tiles that are stored as files on the server via web request. Creating the path to a file allows the insertion of "../" and thus read any file on the web server. Affected GET parameters are "TileMatrix", "TileRow", "TileCol" and "Format"

CVE Details

CVSS v3.1 Score8.2
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published7/29/2025
Last Modified1/20/2026
Sourcenvd
Honeypot Sightings0

Affected Products

maptiler:tileserver_php

Weaknesses (CWE)

CWE-22

References

https://github.com/maptiler/tileserver-php/commit/4fe14e6164bbe2a3f9e3b3d7acf303e3ec210c8e(cve@mitre.org)
https://github.com/maptiler/tileserver-php/issues/167(cve@mitre.org)
https://github.com/mheranco/CVE-2025-44137(cve@mitre.org)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.