CVE-2015-0933

2015-03-03T21:59:02
ID CVE-2015-0933
Type cve
Reporter NVD
Modified 2015-03-04T14:09:01

Description

Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include command.