Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2018-3288

Malware in sbrugna...

9.8CVSS9.5AI score0.02071EPSS
Exploits0References2
Veracode
Veracode
added 2018/05/21 6:57 a.m.9 views

Directory Traversal

FileDownloader is vulnerable to directory traversal. Failing to check filename in util/FileDownloadUtils.java allows the attacker to trigger the attack by sending a file attachment's name with ../...

9.8CVSS9AI score0.02071EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2018/05/18 6:29 p.m.16 views

Directory traversal

util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Directory Traversal...

7.5CVSS9.3AI score0.02071EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2018/05/18 6:29 p.m.9 views

CVE-2018-11248

util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Directory Traversal...

9.8CVSS9.4AI score0.02071EPSS
Exploits0References1
OSV
OSV
added 2018/05/18 6:29 p.m.12 views

CVE-2018-11248

util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Directory Traversal...

9.8CVSS9.6AI score
Exploits0References1
Cvelist
Cvelist
added 2018/05/18 6:0 p.m.14 views

CVE-2018-11248

util/FileDownloadUtils.java in FileDownloader 1.7.3 does not check an attachment's name. If an attacker places "../" in the file name, the file can be stored in an unintended directory because of Directory Traversal...

9.4AI score0.02071EPSS
Exploits0References1
CVE
CVE
added 2018/05/18 6:0 p.m.35 views

CVE-2018-11248

The CVE CVE-2018-11248 affects FileDownloader 1.7.3, where util/FileDownloadUtils.java does not properly validate the attachment name. An attacker can supply a filename containing ../, enabling directory traversal and potential storage outside the intended directory. This vulnerability is describ...

9.8CVSS9.3AI score0.02071EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder