Описание
Path traversal vulnerability exists in RakRak Document Plus Ver.3.2.0.0 to Ver.6.4.0.7 (excluding Ver.6.1.1.3a). If this vulnerability is exploited, arbitrary files on the server may be obtained or deleted by a user of the product with specific privileges.
Ссылки
- Third Party Advisory
- Product
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия от 3.2.0.0 (включая) до 6.1.1.3a (исключая)Версия от 6.1.1.3a (исключая) до 6.4.0.7 (включая)
Одно из
cpe:2.3:a:sei-info:rakrak_document_plus:*:*:*:*:*:*:*:*
cpe:2.3:a:sei-info:rakrak_document_plus:*:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00304
Низкий
8.8 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 8.8
github
около 2 лет назад
Path traversal vulnerability exists in RakRak Document Plus Ver.3.2.0.0 to Ver.6.4.0.7 (excluding Ver.6.1.1.3a). If this vulnerability is exploited, arbitrary files on the server may be obtained or deleted by a user of the product with specific privileges.
EPSS
Процентиль: 53%
0.00304
Низкий
8.8 High
CVSS3
Дефекты
CWE-22