CVE-2013-3923

Name of the Vulnerable Software and Affected Versions SavySoda WiFi HD Free versions prior to 7.0

Description A directory traversal issue allows remote attackers to read arbitrary files by including a ..%2f (encoded dot dot slash) in a GET request to specific API endpoints, such as "/api/v1/files". This could potentially expose sensitive information.

Recommendations For versions prior to 7.0, update to version 7.0 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.