Lucene search

K

Path Traversal

🗓️ 20 Oct 2023 07:28:39Reported by Veracode Vulnerability DatabaseType 
veracode
 veracode
🔗 sca.analysiscenter.veracode.com👁 11 Views

github.com/arduino/arduino-create-agent is vulnerable to Path Traversal due to inadequate sanitization of the `filename` parameter, allowing attackers to execute HTTP requests and potentially elevate their privileges via the `/upload` interface

Show more
Related
Detection
Refs

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
20 Oct 2023 07:39Current
7.1High risk
Vulners AI Score7.1
CVSS37.8
EPSS0.001
11
.json
Report