CVSS: 7.8EPSS: 2%CPEs: 1EXPL: 1CVE-2023-29380
https://notcve.org/view.php?id=CVE-2023-29380
28 May 2023 — Warpinator before 1.6.0 allows remote file deletion via directory traversal in top_dir_basenames. • https://github.com/linuxmint/warpinator/compare/1.4.5...1.6.0 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-42725
https://notcve.org/view.php?id=CVE-2022-42725
10 Oct 2022 — Warpinator through 1.2.14 allows access outside of an intended directory, as demonstrated by symbolic directory links. Warpinator versiones hasta 1.2.14, permite un acceso fuera de un directorio previsto, como lo demuestran los enlaces simbólicos de directorio • http://www.openwall.com/lists/oss-security/2022/10/24/1 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •