CVE-2018-13299

2019-04-01T15:29:00
ID CVE-2018-13299
Type cve
Reporter cve@mitre.org
Modified 2019-04-05T17:35:00

Description

Relative path traversal vulnerability in Attachment Uploader in Synology Calendar before 2.2.2-0532 allows remote authenticated users to upload arbitrary files via the filename parameter.