4 matches found
CVE-2022-25266
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal to read files...
CVE-2022-25266
creationtimestamp| type| source ---|---|--- 2022-03-24 01:29:13+00:00| seen| https://t.me/cibsecurity/39472...
CVE-2022-25266
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal to read files...
CVE-2022-25266
Concrete details found: CVE-2022-25266 affects Passwork On-Premise Edition prior to 4.6.13. Root cause is improper restriction of the path name to a restricted directory in the migration/downloadExportFile endpoint, enabling directory traversal to read local files. Impact is reading files on the ...