CVE-2015-0933

2015-03-0402:00:00

certcc

www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.0%

JSON

Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include command.

References

www.kb.cert.org/vuls/id/302668