A Directory Traversal vulnerability exists in WeBankPartners wecube-platform 3.2.1 via the file variable in PluginPackageController.java.
References
Link | Resource |
---|---|
https://github.com/WeBankPartners/wecube-platform/issues/2297 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
Information
Published : 2022-02-24 07:15
Updated : 2022-03-02 07:41
NVD link : CVE-2021-45746
Mitre link : CVE-2021-45746
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
webank
- wecube