2 matches found
CVE-2022-36671
Novel-Plus v3.6.2 was discovered to contain an arbitrary file download vulnerability via the background file download API...
CVE-2022-36671
CVE-2022-36671 affects Novel-Plus v3.6.2, with an arbitrary file download vulnerability exposed via the background file download API. The CVSS vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) indicates a network-based, unauthenticated issue with high impact to confidentiality and no impact on integri...