CVE-2022-32573
CVE-2022-32573 is a directory-traversal vulnerability in Lansweeper 10.1.1.0 affecting AssetActions.aspx addDoc. A crafted HTTP request can upload arbitrary files due to unsanitized txtdocname and path concatenation, enabling arbitrary file upload to DOCS. Cisco Talos confirms the vulnerability a...