Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2022-45921
- EPSS 0.58%
- Veröffentlicht 28.11.2022 21:15:10
- Zuletzt bearbeitet 28.04.2025 19:15:46
FusionAuth before 1.41.3 allows a file outside of the application root to be viewed or retrieved using an HTTP request. To be specific, an attacker may be able to view or retrieve any file readable by the user running the FusionAuth process.
- EPSS 75.13%
- Veröffentlicht 28.01.2020 13:15:12
- Zuletzt bearbeitet 21.11.2024 05:37:49
An issue was discovered in FusionAuth before 1.11.0. An authenticated user, allowed to edit e-mail templates (Home -> Settings -> Email Templates) or themes (Home -> Settings -> Themes), can execute commands on the underlying operating system by abus...
1