exploitDog

CVE-2025-3021

Опубликовано: 31 мар. 2025

Источник: nvd

EPSS Низкий

Описание

Path Traversal vulnerability in e-solutions e-management. This vulnerability could allow an attacker to access confidential files outside the expected scope via the ‘file’ parameter in the /downloadReport.php endpoint.

Ссылки

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-e-management-e-solutions

EPSS

Процентиль: 71%

0.00659

Низкий

Дефекты

CWE-22

Связанные уязвимости

GHSA-88g3-q69j-g2g2

github

10 месяцев назад

Path Traversal vulnerability in e-solutions e-management. This vulnerability could allow an attacker to access confidential files outside the expected scope via the ‘file’ parameter in the /downloadReport.php endpoint.

EPSS

Процентиль: 71%

0.00659

Низкий

Дефекты

CWE-22