Page 2 of 6 results (0.002 seconds)
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-15230 – Arbitrary file read un Vapor
https://notcve.org/view.php?id=CVE-2020-15230
Vapor is a web framework for Swift. In Vapor before version 4.29.4, Attackers can access data at arbitrary filesystem paths on the same host as an application. Only applications using FileMiddleware are affected. This is fixed in version 4.29.4. Vapor es un framework web para Swift. • https://github.com/vapor/vapor/commit/cf1651f7ff76515593f4d8ca6e6e15d2247fe255 https://github.com/vapor/vapor/pull/2500 https://github.com/vapor/vapor/security/advisories/GHSA-vcvg-xgr8-p5gq • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •