Количество 2
Количество 2
CVE-2018-13864
A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests.
GHSA-v4mq-p756-p4f5
Play Framework's Assets controller vulnerable to directory traversal
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-13864 A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests. | CVSS3: 7.5 | 1% Низкий | больше 7 лет назад |
| GHSA-v4mq-p756-p4f5 Play Framework's Assets controller vulnerable to directory traversal | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
Уязвимостей на страницу