2 matches found
Path Traversal
org.openrefine.dependencies Butterfly is vulnerable to path traversal. The vulnerability is due to improper handling of file:/ URLs, which are accepted in place of relative paths. It allows unauthorized access to local and remote files and enables multiple attacks, including path traversal, SSRF,...
org.openrefine:benchmark (>=3.6-beta1 <=3.8.2), org.openrefine:database (>=3.6-beta1 <=3.8.2) +7 more potentially affected by unknown CVE via org.openrefine.dependencies:butterfly (>=1.2.3 <=1.2.5)
org.openrefine.dependencies:butterfly MAVEN version =1.2.3, =3.6-beta1, =3.6-beta1, =3.6-beta1, =3.6-beta1, =3.6-beta1, =3.6-beta1, =3.6-beta1, =3.7-beta1, =3.6-beta1, =3.6.2 Source cves: unknown CVE Source advisory: OSV:GHSA-MPCW-3J5P-P99X...