Mobile Security Framework (MobSF) v0.9.2 and below was discovered to contain a local file inclusion (LFI) vulnerability in the StaticAnalyzer/views.py script. This vulnerability allows attackers to read arbitrary files via a crafted HTTP request.
CPE | Name | Operator | Version |
---|---|---|---|
mobile_security_framework | le | 0.9.2 |