KSWEB
by KSLabs
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-15766 | Hig | 0.57 | 8.8 | 0.03 | Oct 3, 2019 | The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written to (and the config_text parameter set to the content of the… | ||
| CVE-2019-16198 | Med | 0.42 | 6.5 | 0.02 | Oct 3, 2019 | KSLabs KSWEB 3.93 allows ../ directory traversal, as demonstrated by the hostFile parameter. |
- risk 0.57cvss 8.8epss 0.03
The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written to (and the config_text parameter set to the content of the…
- risk 0.42cvss 6.5epss 0.02
KSLabs KSWEB 3.93 allows ../ directory traversal, as demonstrated by the hostFile parameter.