Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:26 a.m.7 views

CVE-2023-25814

metersphere is an open source continuous testing platform. In versions prior to 2.7.1 a user who has permission to create a resource file through UI operations is able to append a path to their submission query which will be read by the system and displayed to the user. This allows a users of the...

7.1CVSS6.7AI score0.00858EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/03/09 5:10 p.m.21 views

CVE-2023-25814 Arbitrary File Read Vulnerability in metersphere

metersphere is an open source continuous testing platform. In versions prior to 2.7.1 a user who has permission to create a resource file through UI operations is able to append a path to their submission query which will be read by the system and displayed to the user. This allows a users of the...

7.1CVSS7AI score0.00858EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/09 5:10 p.m.10 views

CVE-2023-25814 Arbitrary File Read Vulnerability in metersphere

metersphere is an open source continuous testing platform. In versions prior to 2.7.1 a user who has permission to create a resource file through UI operations is able to append a path to their submission query which will be read by the system and displayed to the user. This allows a users of the...

7.1CVSS6.9AI score0.00858EPSS
Exploits1References1
CVE
CVE
added 2023/03/09 5:10 p.m.106 views

CVE-2023-25814

Vulnerability overview (CVE-2023-25814) : metersphere prior to 2.7.1 allows a user with UI-created resource file permission to append a path to their submission query, which is then read and displayed by the system, enabling read access to arbitrary server filesystem files if the server process h...

7.1CVSS6.5AI score0.00858EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder