exploitDog

GHSA-3mhc-qrfq-hh49

Опубликовано: 11 янв. 2022

Источник: github

Github: Не прошло ревью

Описание

CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated attacker via ../ in an HTTP PUT request.

CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated attacker via ../ in an HTTP PUT request.

Ссылки

EPSS

Процентиль: 87%

0.03128

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2022-22836

CVSS3: 6.5

nvd

около 4 лет назад

CoreFTP Server before 727 allows directory traversal (for file creation) by an authenticated attacker via ../ in an HTTP PUT request.

EPSS

Процентиль: 87%

0.03128

Низкий

CVE ID

Дефекты

CWE-22