VYPR

BiblioCraft

by BiblioCraft

CVEs (1)

  • CVE-2023-29478CriApr 7, 2023
    risk 0.64cvss 9.8epss 0.02

    BiblioCraft before 2.4.6 does not sanitize path-traversal characters in filenames, allowing restricted write access to almost anywhere on the filesystem. This includes the Minecraft mods folder, which results in code execution.