by vicarius
Log in
Join community

CVE-2022-30058

11 May 2022
Shopwind <=v3.4.2 was discovered to contain a Arbitrary File Download vulnerability via the neirong parameter at \backend\controllers\DbController.php.

VTranslations (0)

Remedies (0)

Apps (0)

No Apps

Operating Systems (0)

No Operating Systems

Comments (0)

CVE-2022-30058

5.3 Medium Severity
Share
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Tags (4)
#known_vulnerability#easy_to_exploit#new_vulnerability_published#CVE-2022-30058
Vulnerability Categories (1)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Advisory Links (1)
www.yuque.com/doc...

Related