4 matches found
GHSA-5JPG-2RJ5-964C lsFusion Platform has a Path Traversal vulnerability
A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote...
lsFusion Platform has a Path Traversal vulnerability
A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote...
CVE-2025-13261 lsfusion platform DownloadFileRequestHandler.java DownloadFileRequestHandler path traversal
A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote...
CVE-2025-13261
CVE-2025-13261 affects lsfusion platform up to 6.1. The vulnerability is in DownloadFileRequestHandler.java (web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java). Manipulation of the Version argument leads to path traversal with remote exploitation possible; exp...