A partial-path traversal issue exists within the `downloadDirectory` method in the AWS S3 TransferManager component of the AWS SDK for Java v1 prior to version 1.12.261. The AWS SDK for Java enables Java developers to work with Amazon Web Services. etc/passwd URI.Ī Path Traversal vulnerability in Gitblit 1.9.3 can lead to reading website files via /resources//./ (e.g., followed by a WEB-INF or META-INF pathname). Grafana 8.4.3 allows reading files via (for example) a /dashboard/snapshot/%7B%nstructor'/. This primarily affects mat2 web instances, in which clients could obtain sensitive information via a crafted archive. directory traversal during the ZIP archive cleaning process. Mat2 (aka metadata anonymisation toolkit) before 0.13.0 allows.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |