Web Vulnerability Report
| ID | EDB-ID-48750 |
| CVSS 3.0 | N/A |
|
Cloudbric Score
?
|
Medium |
| Cloudbric Detection | Yes |
| Vulnerability Type | Unauthenticated Arbitrary File Disclosure |
| Published Date | 2020-08-17 |
| Updated Date | 2020-09-17 |
| Vendor | 3.0.9 |
| Description | The application suffers from an unauthenticated file disclosure vulnerability when input passed thru the 'filename' parameter when using the download action or thru 'path' parameter when using the getAll action is not properly verified before being used. This can be exploited to disclose contents of files and directories from local resources. |
| Reference | N/A |
| URL Link | https://www.exploit-db.com/exploits/48750/ |
This vulnerability has been detected by Cloudbric!
Block NOW!
| ID | Description | Vulnerability Type |
Cloudbric Score
?
|
Updated Date | Detection |
|---|
To receive weekly updates on new vulnerabilities added to Threat Index
Subscribe Now