VYPR

Battle For Wesnoth

by Wesnoth

Source repositories

CVEs (3)

  • CVE-2015-5069MedSep 26, 2017
    risk 0.21cvss 4.3epss 0.02

    The (1) filesystem::get_wml_location function in filesystem.cpp and (2) is_legal_file function in filesystem_boost.cpp in Battle for Wesnoth before 1.12.3 and 1.13.x before 1.13.1 allow remote attackers to obtain sensitive information via vectors related to inclusion of .pbl…

  • CVE-2015-5070LowSep 26, 2017
    risk 0.13cvss 3.1epss 0.01

    The (1) filesystem::get_wml_location function in filesystem.cpp and (2) is_legal_file function in filesystem_boost.cpp in Battle for Wesnoth before 1.12.4 and 1.13.x before 1.13.1, when a case-insensitive filesystem is used, allow remote attackers to obtain sensitive information…

  • CVE-2015-0844Apr 14, 2015
    risk 0.00cvss epss 0.02

    The WML/Lua API in Battle for Wesnoth 1.7.x through 1.11.x and 1.12.x before 1.12.2 allows remote attackers to read arbitrary files via a crafted (1) campaign or (2) map file.