Lucene search
PRIOn knowledge basePRION:CVE-2018-13864HistoryJul 17, 2018 - 12:29 p.m.
Directory traversal
2018-07-1712:29:00
PRIOn knowledge base
www.prio-n.com
7
0.021 Low
EPSS
Percentile
89.3%
A directory traversal vulnerability has been found in the Assets controller in Play Framework 2.6.12 through 2.6.15 (fixed in 2.6.16) when running on Windows. It allows a remote attacker to download arbitrary files from the target server via specially crafted HTTP requests.
| CPE | Name | Operator | Version |
|---|---|---|---|
| play_framework | ge | 2.6.12 | |
| play_framework | le | 2.6.15 |
Related
nvd
nvd
CVE-2018-13864
2018-07-17 12:29:00
cve
cve
CVE-2018-13864
2018-07-17 12:29:00
github
github
Play Framework's Assets controller vulnerable to directory traversal
2022-05-13 01:30:27
osv
osv
Play Framework's Assets controller vulnerable to directory traversal
2022-05-13 01:30:27
CVE-2018-13864
2018-07-17 12:29:00
veracode
veracode
Directory Traversal
2018-07-17 06:16:03
cvelist
cvelist
CVE-2018-13864
2018-07-17 12:00:00