Количество 2
Количество 2
CVE-2018-20094
около 7 лет назад
An issue was discovered in XXL-CONF 1.6.0. There is a path traversal vulnerability via ../ in the keys parameter that can download any configuration file, related to ConfController.java and PropUtil.java.
CVSS3: 7.5
EPSS: Низкий
GHSA-8j39-fgfp-vxh8
около 7 лет назад
XXL-CONF Path Traversal vulnerability
CVSS3: 7.5
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2018-20094 An issue was discovered in XXL-CONF 1.6.0. There is a path traversal vulnerability via ../ in the keys parameter that can download any configuration file, related to ConfController.java and PropUtil.java. | CVSS3: 7.5 | 0% Низкий | около 7 лет назад |
| GHSA-8j39-fgfp-vxh8 XXL-CONF Path Traversal vulnerability | CVSS3: 7.5 | 0% Низкий | около 7 лет назад |
Уязвимостей на страницу
20