Lucene search
K

5 matches found

Circl
Circl
added 2022/04/04 2:27 a.m.6 views

CVE-2022-27248

creationtimestamp| type| source ---|---|--- 2022-04-04 02:27:04+00:00| seen| https://t.me/cibsecurity/40076...

6.5CVSS6.3AI score0.02823EPSS
Exploits2References1
NVD
NVD
added 2022/04/03 11:15 p.m.35 views

CVE-2022-27248

A directory traversal vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to download arbitrary .dwg files from a remote server by specifying an absolute or relative path when invoking the affected DownloadDwg endpoint. An attack uses the path field to...

6.5CVSS0.02823EPSS
Exploits2References2
CVE
CVE
added 2022/04/03 10:14 p.m.80 views

CVE-2022-27248

Affected software: IdeaRE RefTree (web application) prior to 2021.09.17. Vulnerability: Directory traversal in the DownloadDwg endpoint that parses a path field (absolute or relative) to download files. Root cause / impact: Authenticated users can download arbitrary .dwg files from the server by ...

6.5CVSS6.2AI score0.02823EPSS
Exploits2References2Affected Software1
0day.today
0day.today
added 2022/03/31 12:0 a.m.265 views

IdeaRE RefTree Path Traversal Vulnerability

=============================================================================== title: IdeaRE RefTree Download Path Traversal product: IdeaRE RefTree =============================================================================== EXECUTIVE SUMMARY RefTree is a web application made for managing...

6.5CVSS0.6AI score0.02823EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/03/31 12:0 a.m.273 views

IdeaRE RefTree Path Traversal

=============================================================================== title: IdeaRE RefTree Download Path Traversal product: IdeaRE RefTree =============================================================================== EXECUTIVE SUMMARY RefTree is a web application made for managing...

0.3AI score0.02823EPSS
Exploits2
Rows per page
Query Builder