VYPR
Unrated severityNVD Advisory· Published Aug 8, 2023· Updated Oct 15, 2024

CVE-2023-24698

CVE-2023-24698

Description

Insufficient parameter validation in the Foswiki::Sandbox component of Foswiki v2.1.7 and below allows attackers to perform a directory traversal via supplying a crafted web request.

Affected products

2
  • Foswiki/Foswiki::Sandboxdescription
  • Foswiki/Foswikillm-fuzzy
    Range: <=2.1.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.