14 matches found
CVE-2025-11221
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through...
CVE-2025-11182
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Download of Code Without Integrity Check vulnerability in GTONE ChangeFlow allows Path Traversal.This issue affects ChangeFlow: All versions to v9.0.1.1...
CVE-2025-11221
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through...
CVE-2025-11182
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Download of Code Without Integrity Check vulnerability in GTONE ChangeFlow allows Path Traversal.This issue affects ChangeFlow: All versions to v9.0.1.1...
CVE-2025-11221 Remote Code Execution in GTONE ChangeFlow
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through...
CVE-2025-11221 Remote Code Execution in GTONE ChangeFlow
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Unrestricted Upload of File with Dangerous Type vulnerability in GTONE ChangeFlow allows Path Traversal, Accessing Functionality Not Properly Constrained by ACLs.This issue affects ChangeFlow: from All versions through...
CVE-2025-11221
CVE-2025-11221 affects GTONE ChangeFlow. The issue arises from improper pathname restrictions and unrestricted upload of files with dangerous types, enabling path traversal and access to functionality not properly constrained by ACLs. Affected versions: ChangeFlow up to v9.0.1.1 (inclusive). Root...
CVE-2025-11182 File Download in GTONE ChangeFlow
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Download of Code Without Integrity Check vulnerability in GTONE ChangeFlow allows Path Traversal.This issue affects ChangeFlow: All versions to v9.0.1.1...
CVE-2025-11182
The CVE-2025-11182 entry concerns GTONE ChangeFlow, where an improper pathname restriction (path traversal) combined with missing integrity checks on downloaded code exists in versions up to 9.0.1.1. Affected component: ChangeFlow download path handling; root cause: insufficient restriction of de...
CVE-2025-11182 File Download in GTONE ChangeFlow
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal', Download of Code Without Integrity Check vulnerability in GTONE ChangeFlow allows Path Traversal.This issue affects ChangeFlow: All versions to v9.0.1.1...
GTONE ChangeFlow 安全漏洞
GTONE ChangeFlow is an application change management software from GTONE Korea. A security vulnerability exists in GTONE ChangeFlow v9.0.1.1 and prior versions, which stems from improper pathname restrictions and unrestricted uploads of dangerous file types, which could lead to improper path...
PT-2025-40314
Name of the Vulnerable Software and Affected Versions GTONE ChangeFlow versions through 9.0.1.1 Description The software contains a flaw related to improper limitation of a pathname to a restricted directory, also known as 'Path Traversal', and allows for the download of code without integrity...
GTONE ChangeFlow 安全漏洞
GTONE ChangeFlow is an application change management software from GTONE Korea. A security vulnerability exists in GTONE ChangeFlow v9.0.1.1 and prior versions, which stems from improper pathname restriction and missing integrity checking of code downloads, which could lead to path traversal...
PT-2025-40315
Name of the Vulnerable Software and Affected Versions GTONE ChangeFlow versions through 9.0.1.1 Description The software contains issues related to improper limitation of a pathname to a restricted directory Path Traversal and unrestricted upload of files with dangerous types. These issues can le...