2 matches found
CVE-2022-29517
CVE-2022-29517 is a directory traversal vulnerability in Lansweeper 10.1.1.0, affecting the HelpdeskActions.aspx edittemplate feature. Cisco Talos confirms an exploitable path where inline attachments (inlineattachment + inlineattachmentname) can be uploaded to arbitrary locations due to unsaniti...
CVE-2022-29517
A directory traversal vulnerability exists in the HelpdeskActions.aspx edittemplate functionality of Lansweeper lansweeper 10.1.1.0. A specially-crafted HTTP request can lead to arbitrary file upload. An attacker can send an HTTP request to trigger this vulnerability...