Описание
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in TimeWorks 10.0 to 10.3. If exploited, arbitrary JSON files on the server may be viewed by a remote unauthenticated attacker.
EPSS
Процентиль: 22%
0.00071
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 5.3
github
8 месяцев назад
Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in TimeWorks 10.0 to 10.3. If exploited, arbitrary JSON files on the server may be viewed by a remote unauthenticated attacker.
EPSS
Процентиль: 22%
0.00071
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-22