2 matches found
CVE-2019-3580
OpenRefine through 3.1 allows arbitrary file write because Directory Traversal can occur during the import of a crafted project file...
CVE-2019-3580
OpenRefine (up to version 3.1) is affected by CVE-2019-3580: during import of a crafted project file, a directory traversal flaw allows arbitrary file write. The description consistently states this vulnerability exists in OpenRefine 3.1 and earlier, caused by directory traversal in the import pr...