Path traversal

2023-04-2702:15:00

PRIOn knowledge base

www.prio-n.com

path traversal

authenticated remote attacker

arbitrary system operation

disrupt service

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.1%

JSON

SUNNET CTMS has vulnerability of path traversal within its file uploading function. An authenticated remote attacker with general user privilege can exploit this vulnerability to upload and execute scripts onto arbitrary directories to perform arbitrary system operation or disrupt service.