Количество 3
Количество 3
CVE-2021-23772
This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to arbitrary locations outside the designated target folder.
CVE-2021-23772
This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to arbitrary locations outside the designated target folder.
GHSA-jcxc-rh6w-wf49
Link Following in Iris
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-23772 This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to arbitrary locations outside the designated target folder. | CVSS3: 8.8 | 1% Низкий | около 4 лет назад |
 | CVE-2021-23772 This affects all versions of package github.com/kataras/iris; all versions of package github.com/kataras/iris/v12. The unsafe handling of file names during upload using UploadFormFiles method may enable attackers to write to arbitrary locations outside the designated target folder. | CVSS3: 7.5 | 1% Низкий | около 4 лет назад |
| GHSA-jcxc-rh6w-wf49 Link Following in Iris | CVSS3: 7.5 | 1% Низкий | около 4 лет назад |
Уязвимостей на страницу