Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:5 p.m.8 views

CVE-2020-20948

An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable...

7.5CVSS6.9AI score0.01318EPSS
Exploits1
NVD
NVD
added 2021/12/27 9:15 p.m.34 views

CVE-2020-20948

An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable...

7.5CVSS0.01318EPSS
Exploits1References1
OSV
OSV
added 2021/12/27 9:15 p.m.9 views

CVE-2020-20948

An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable...

7.5CVSS6.8AI score
Exploits0References1
Prion
Prion
added 2021/12/27 9:15 p.m.19 views

Arbitrary file deletion

An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable...

5CVSS7.5AI score0.01318EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/12/27 8:33 p.m.52 views

CVE-2020-20948

CVE-2020-20948 affects jeecg v3.8, enabling arbitrary file download by modifying the localPath variable. The vulnerability stems from insufficient input validation/Access Control, allowing an attacker to access sensitive files. Exploitation status is not documented in the provided sources; no pat...

7.5CVSS7.5AI score0.01318EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/12/27 8:33 p.m.27 views

CVE-2020-20948

An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable...

7.5AI score0.01318EPSS
Exploits1References1
Rows per page
Query Builder