PT-2023-12839 · Servst · Servst
Liran Tal
·
Publicado
2023-01-30
·
Atualizado
2025-03-27
·
CVE-2022-25936
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
servst versions prior to 2.0.3
Description
The issue is related to Directory Traversal, caused by improper sanitization of the
filePath variable. This allows for unauthorized access to files and directories.Recommendations
For versions prior to 2.0.3, update to version 2.0.3 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.
Exploit
Correção
Path traversal
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Servst