6 matches found
CVE-2024-40524
Directory Traversal vulnerability in xmind2testcase v.1.5 allows a remote attacker to execute arbitrary code via the webtool\application.py component...
CVE-2024-40524
Directory Traversal vulnerability in xmind2testcase v.1.5 allows a remote attacker to execute arbitrary code via the webtool\application.py component...
PT-2024-28899 · Unknown · Xmind2Testcase
Name of the Vulnerable Software and Affected Versions: xmind2testcase version 1.5 Description: A Directory Traversal issue allows a remote attacker to execute arbitrary code via the webtoolapplication.py component. Recommendations: For xmind2testcase version 1.5, consider restricting access to th...
CVE-2024-40524
Directory Traversal vulnerability in xmind2testcase v.1.5 allows a remote attacker to execute arbitrary code via the webtool\application.py component...
CVE-2024-40524
Directory Traversal vulnerability in xmind2testcase v.1.5 allows a remote attacker to execute arbitrary code via the webtool\application.py component...
CVE-2024-40524
CVE-2024-40524 describes a Directory Traversal in xmind2testcase v1.5 that allows a remote attacker to execute arbitrary code through the webtool\application.py component. The root cause is improper handling/validation in application.py enabling traversal to sensitive paths. Affected software: xm...