| ID | CVE-2019-8982 | ||||||
| Sažetak | com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 mishandles the studioService.download?method=getContent&inUrl= value, leading to disclosure of local files and SSRF. | ||||||
| Reference | |||||||
| CVSS |
|
||||||
| Pristup |
|
||||||
| Impact |
|
||||||
| CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:P | ||||||
| Zadnje važnije ažuriranje | 21-02-2019 - 19:56 | ||||||
| Objavljeno | 21-02-2019 - 14:29 |
