CVE-2022-41547
- Reference to the description:
- Description:
- Mobile Security Framework (MobSF) v0.9.2 and below was discovered to contain a local file inclusion (LFI) vulnerability in the StaticAnalyzer/views.py script. This vulnerability allows attackers to read arbitrary files via a crafted HTTP request.
- Last updated date:
- 10/20/2022
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 10/20/2022
- Reference url to background
https://github.com/MobSF/Mobile-Security-Framework-MobSF/pull/166