Описание
SHIRASAGI prior to v1.19.1 processes URLs in HTTP requests improperly, resulting in a path traversal vulnerability. If this vulnerability is exploited, arbitrary files on the server may be retrieved when processing crafted HTTP requests.
Ссылки
- Patch
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 1.19.1 (исключая)
cpe:2.3:a:ss-proj:shirasagi:*:*:*:*:*:*:*:*
EPSS
Процентиль: 76%
0.00932
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-22
CWE-22
Связанные уязвимости
CVSS3: 8.6
github
больше 1 года назад
SHIRASAGI prior to v1.19.1 processes URLs in HTTP requests improperly, resulting in a path traversal vulnerability. If this vulnerability is exploited, arbitrary files on the server may be retrieved when processing crafted HTTP requests.
EPSS
Процентиль: 76%
0.00932
Низкий
8.6 High
CVSS3
7.5 High
CVSS3
Дефекты
CWE-22
CWE-22