Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-88788
HistorySep 30, 2022 - 12:00 a.m.

Rdiffweb Information Disclosure Vulnerability

2022-09-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
rdiffweb
patrik dufresne
united states
information disclosure
vulnerability
cache
sensitive information
attacker

EPSS

0.001

Percentile

31.5%

Rdiffweb is a web application by Patrik Dufresne, a personal developer in the United States. An information disclosure vulnerability exists in versions prior to Rdiffweb 2.4.8, which stems from the use of a cache containing sensitive information. An attacker could exploit the vulnerability to obtain sensitive information.

CPENameOperatorVersion
patrik dufresne rdiffweblt2.4.8

EPSS

0.001

Percentile

31.5%