VYPR

WaveMaker Studio

by WaveMaker

CVEs (1)

  • CVE-2019-8982CriFeb 21, 2019
    risk 0.67cvss 9.6epss 0.26

    com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 mishandles the studioService.download?method=getContent&inUrl= value, leading to disclosure of local files and SSRF.