You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Absolute_Path_Traversal issue exists @ download.jsp in branch master
Method download at line 11 of /src/main/webapp/vulnerability/idor/download.jsp gets dynamic data from the ""file"" element. This element’s value then flows through the code and is eventually used in a file path for local disk access in download at line 18 of /src/main/webapp/vulnerability/idor/download.jsp. This may cause a Path Traversal vulnerability.
Absolute_Path_Traversal issue exists @ download.jsp in branch master
Method download at line 11 of /src/main/webapp/vulnerability/idor/download.jsp gets dynamic data from the ""file"" element. This element’s value then flows through the code and is eventually used in a file path for local disk access in download at line 18 of /src/main/webapp/vulnerability/idor/download.jsp. This may cause a Path Traversal vulnerability.
Namespace: scott-cx
Repository: winter
Repository Url: https://github.com/scott-cx/winter
CxAST-Project: scott-cx/winter
CxAST platform scan: 5d347788-2ed1-4f75-a829-ec3822e0131d
Branch: master
Application: winter
Severity: MEDIUM
State: TO_VERIFY
Status: RECURRENT
CWE: 36
Lines: 11
References
Read more
The text was updated successfully, but these errors were encountered: