VYPR

E2openplugin Openwebif

by E2openplugins

Source repositories

CVEs (1)

  • CVE-2018-20332HigDec 21, 2018
    risk 0.00cvss 7.5epss 0.02

    An issue has been discovered in the OpenWebif plugin through 1.2.4 for Enigma2 based devices. Reading of arbitrary files is possible with /file?action=download&file= followed by a full pathname, and listing of arbitrary directories is possible with /file?action=download&dir=…