2 matches found
Directory traversal
Directory traversal vulnerability in the LYSESOFT AndExplorer application before 20140403 and AndExplorerPro application before 20140405 for Android allows attackers to overwrite or create arbitrary files via unspecified vectors...
CVE-2014-1974
The CVE-2014-1974 issue concerns LYSESOFT AndExplorer (pre-2014-04-03) and AndExplorerPro (pre-2014-04-05) on Android, where a flaw in how file names are processed enables a directory traversal (CWE-22). This allows a remote, unauthenticated attacker to create or overwrite arbitrary files in dire...