Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.5 views

CVE-2023-28459

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export a non-default feature. Users were able to upload crafted HTML documents that trigger the reading of arbitrary files...

6.5CVSS6.8AI score0.06648EPSS
Exploits1References1
NVD
NVD
added 2023/04/20 9:15 p.m.31 views

CVE-2023-28459

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export a non-default feature. Users were able to upload crafted HTML documents that trigger the reading of arbitrary files...

6.5CVSS6.5AI score0.06648EPSS
Exploits1References4
Cvelist
Cvelist
added 2023/04/20 12:0 a.m.29 views

CVE-2023-28459

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export a non-default feature. Users were able to upload crafted HTML documents that trigger the reading of arbitrary files...

6.7AI score0.06648EPSS
Exploits1References4
OSV
OSV
added 2023/04/20 12:0 a.m.19 views

CVE-2023-28459

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export a non-default feature. Users were able to upload crafted HTML documents that trigger the reading of arbitrary files...

6.5CVSS6.7AI score0.06648EPSS
Exploits1References6
CVE
CVE
added 2023/04/20 12:0 a.m.92 views

CVE-2023-28459

Pretalx 2.3.1 up to 2.3.2 is vulnerable to path traversal in the HTML export feature. Crafted HTML documents uploaded for the non-default HTML export path can cause arbitrary file reads. The issue is tied to how the export package includes files referenced by HTML tags without proper path validat...

6.5CVSS6.4AI score0.06648EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/20 12:0 a.m.5 views

CVE-2023-28459

pretalx 2.3.1 before 2.3.2 allows path traversal in HTML export a non-default feature. Users were able to upload crafted HTML documents that trigger the reading of arbitrary files...

6.5AI score0.06648EPSS
Exploits1References4
Rows per page
Query Builder