Directory traversal vulnerability in Dan Costin File Transfer before 1.2f allows remote attackers to read arbitrary files via a "…" (dot dot backslash) in the filename.
CPE | Name | Operator | Version |
---|---|---|---|
file_transfer | eq | 1.2.100 | |
file_transfer | eq | 1.2.99 | |
file_transfer | eq | 1.2.101 | |
file_transfer | eq | 1.2.98 |