8 matches found
EUVD-2020-6102
Malware in sbrugna...
CVE-2020-13894
handler/uploadhandler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field...
Raonwiz DEXT5 Editor Arbitrary File Download Vulnerability
Raonwiz DEXT5 Editor is an HTML-based Web editor from the Korean company Raonwiz. A security vulnerability exists in the handler/uploadhandler.jsp file in Raonwiz DEXT5 Editor 3.5.1402961 and earlier versions. An attacker can exploit this vulnerability to download arbitrary files with the help of...
CVE-2020-13894
handler/uploadhandler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field...
CVE-2020-13894
handler/uploadhandler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field...
Design/Logic Flaw
handler/uploadhandler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field...
CVE-2020-13894
handler/uploadhandler.jsp in DEXT5 Editor through 3.5.1402961 allows an attacker to download arbitrary files via the savefilepath field...
CVE-2020-13894
CVE-2020-13894 affects Raonwiz DEXT5 Editor before or up to version 3.5.1402961, where the file handler/upload_handler.jsp vulnerability allows an attacker to download arbitrary files via the savefilepath field. The connected sources confirm the vulnerable component and the arbitrary file downloa...