exploitDog

GHSA-6rm2-rq6j-h85r

Опубликовано: 02 дек. 2021

Источник: github

Github: Не прошло ревью

Описание

libretime hv3.0.0-alpha.10 is affected by a path manipulation vulnerability in /blob/master/legacy/application/modules/rest/controllers/ShowImageController.php through the rename function.

libretime hv3.0.0-alpha.10 is affected by a path manipulation vulnerability in /blob/master/legacy/application/modules/rest/controllers/ShowImageController.php through the rename function.

Ссылки

EPSS

Процентиль: 62%

0.00433

Низкий

CVE ID

Дефекты

CWE-610

Связанные уязвимости

CVE-2021-43685

CVSS3: 9.8

nvd

около 4 лет назад

libretime hv3.0.0-alpha.10 is affected by a path manipulation vulnerability in /blob/master/legacy/application/modules/rest/controllers/ShowImageController.php through the rename function.

CVE-2021-43685

CVSS3: 9.8

debian

около 4 лет назад

libretime hv3.0.0-alpha.10 is affected by a path manipulation vulnerab ...

EPSS

Процентиль: 62%

0.00433

Низкий

CVE ID

Дефекты

CWE-610