exploitDog

GHSA-25gp-h9jh-j64g

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

Ссылки

EPSS

Процентиль: 57%

0.00341

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2010-0999

nvd

почти 16 лет назад

Directory traversal vulnerability in Free Download Manager (FDM) before 3.0.852 allows remote attackers to create arbitrary files via directory traversal sequences in the name attribute of a file element in a metalink file.

EPSS

Процентиль: 57%

0.00341

Низкий

CVE ID

Дефекты

CWE-22