Primary

Context

Gorilla Tag Console Path Traversal Vulnerability Allowing Arbitrary File Write

Vulnerability

Patched

A path traversal vulnerability has been identified in the Gorilla Tag Console mod management tool, in versions prior to 2.7.0. This vulnerability allows users to manipulate file paths using a combination of backslashes and periods to escape the intended directory and write files to unauthorized locations. The issue has been addressed in version 2.8.0.

Impact

Exploitation of this vulnerability could lead to unauthorized file writes, potentially allowing for the execution of malicious code or modification of game assets.

Remediation

Users can update to Console version 2.8.0 to address this vulnerability.

Added: Nov 25, 2025, 11:17 PM

Updated: Nov 25, 2025, 11:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.2

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.3

remediation

7.7

relevance

1.2

threat

3.2

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Gorilla Tag Console Path Traversal Vulnerability Allowing Arbitrary File Write

Vulnerability

Impact

Remediation

Affected Products

iiDk-the-actual Console

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating