Описание
Path traversal in flaskcode Devan-Kerman ARRP
Directory Traversal vulnerability in Devan-Kerman ARRP v.0.8.1 and before allows a remote attacker to execute arbitrary code via the dumpDirect in RuntimeResourcePackImpl component.
Пакеты
Наименование
net.devtech:arrp
maven
Затронутые версииВерсия исправления
<= 0.8.1
0.8.2
Связанные уязвимости
CVSS3: 8.8
nvd
почти 2 года назад
Directory Traversal vulnerability in Devan-Kerman ARRP v.0.8.1 and before allows a remote attacker to execute arbitrary code via the dumpDirect in RuntimeResourcePackImpl component.