logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2022-41712

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2022-41712

Description:
Frappe version 14.10.0 allows an external attacker to remotely obtain arbitrary local files. This is possible because the application does not correctly validate the information injected by the user in the import_file parameter.
Last updated date:
11/30/2022
Type:
exploit
Confidence:
HIGH
Date of publishing:
11/30/2022
Reference url to background

https://fluidattacks.com/advisories/kiniza/

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy