exploitDog

GHSA-rpw7-c5cp-v8vp

Опубликовано: 07 фев. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible

because the application is vulnerable to LFR.

Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible

because the application is vulnerable to LFR.

Ссылки

EPSS

Процентиль: 5%

0.00021

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

CWE-22

CWE-73

Связанные уязвимости

CVE-2024-0849

CVSS3: 5

nvd

около 2 лет назад

Leanote version 2.7.0 allows obtaining arbitrary local files. This is possible because the application is vulnerable to LFR.

EPSS

Процентиль: 5%

0.00021

Низкий

5.5 Medium

CVSS3

CVE ID

Дефекты

CWE-20

CWE-22

CWE-73