io.fusionauth:fusionauth-java-client is vulnerable to path traversal. An attacker is able to view or retrieve any file readable by the current user, via a maliciously crafted HTTP request, which allows the attacker to gain access to sensitive information in the system.
CPE | Name | Operator | Version |
---|---|---|---|
fusionauth java client library | le | 1.41.0 | |
fusionauth java client library | le | 1.41.0 |