Code injection

2022-02-1813:15:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

49.0%

This affects the package sprinfall/webcc before 0.3.0. It is possible to traverse directories to fetch arbitrary files from the server.

CPENameOperatorVersion
webcclt0.3.0

CPE	Name	Operator	Version
	webcc	lt	0.3.0

References

github.com/sprinfall/webcc/commit/55a45fd5039061d5cc62e9f1b9d1f7e97a15143f

snyk.io/vuln/SNYK-UNMANAGED-SPRINFALLWEBCC-2404182

0.001 Low

EPSS

Percentile

49.0%

Related for PRION:CVE-2022-25298