Lucene search
Veracode Vulnerability DatabaseVERACODE:34669HistoryMar 14, 2022 - 9:47 a.m.
Insecure File Upload
2022-03-1409:47:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
4
0.001 Low
EPSS
Percentile
24.8%
freetakserver_ui has insecure file upload. The vulnerability exists due to an issue in the filename= argument of the route /DataPackageTable which allows an attacker to place arbitrary files anywhere on the system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| freetakserver-ui | le | 1.9.8 | |
| freetakserver-ui | le | 1.9.8 |
References
Related
nvd
nvd
CVE-2022-25511
2022-03-11 00:15:08
osv
osv
CVE-2022-25511
2022-03-11 00:15:08
Path traversal in FreeTAKServer-UI
2022-03-12 00:00:37
gitlab
gitlab
Path traversal in FreeTAKServer-UI
2022-03-12 00:00:00
cnvd
cnvd
FreeTAKServer-UI has an unspecified vulnerability
2022-03-14 00:00:00
cvelist
cvelist
CVE-2022-25511
2022-03-10 23:35:40
cve
cve
CVE-2022-25511
2022-03-11 00:15:08
prion
prion
Information disclosure
2022-03-11 00:15:00
github
github
Path traversal in FreeTAKServer-UI
2022-03-12 00:00:37