exploitDog

GHSA-2f5v-p83c-vrjp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Path traversal vulnerability in GROWI versions v4.2.2 and earlier allows an attacker with administrator rights to read and/or delete an arbitrary path via a specially crafted URL.

Path traversal vulnerability in GROWI versions v4.2.2 and earlier allows an attacker with administrator rights to read and/or delete an arbitrary path via a specially crafted URL.

Ссылки

EPSS

Процентиль: 49%

0.0026

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2021-20669

CVSS3: 4.7

nvd

почти 5 лет назад

Path traversal vulnerability in GROWI versions v4.2.2 and earlier allows an attacker with administrator rights to read and/or delete an arbitrary path via a specially crafted URL.

EPSS

Процентиль: 49%

0.0026

Низкий

CVE ID

Дефекты

CWE-22