2 matches found
CVE-2020-15928
creationtimestamp| type| source ---|---|--- 2020-11-24 07:46:21+00:00| seen| Telegram/iCe6fwC6nR0bU01I2ZOGCGumHhqICwBhraeWzHcFAwIXh90...
CVE-2020-15928
In Ortus TestBox versions 2.4.0 through 4.1.0, unvalidated query string parameters to test-browser/index.cfm enable directory traversal, per CVE-2020-15928. Public exploit references exist (e.g., Exploit DB). The root cause is the lack of validation on user-supplied query parameters in that path,...