Path traversal

2015-03-0402:59:00

PRIOn knowledge base

www.prio-n.com

6.7 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.0%

JSON

Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include command.

CPENameOperatorVersion
sharelatexle0.1.2

CPE	Name	Operator	Version
	sharelatex	le	0.1.2

References

www.kb.cert.org/vuls/id/302668