Количество 2
Количество 2
CVE-2025-13261
A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote exploitation of the attack is possible. The exploit has been made public and could be used.
GHSA-5jpg-2rj5-964c
lsFusion Platform has a Path Traversal vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-13261 A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote exploitation of the attack is possible. The exploit has been made public and could be used. | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
| GHSA-5jpg-2rj5-964c lsFusion Platform has a Path Traversal vulnerability | CVSS3: 5.3 | 0% Низкий | 3 месяца назад |
Уязвимостей на страницу