Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Wavemaker Subscribe
Filtered by product Wavemarker Studio
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-8982 1 Wavemaker 1 Wavemarker Studio 2019-02-21 6.8 MEDIUM 9.6 CRITICAL
com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 mishandles the studioService.download?method=getContent&inUrl= value, leading to disclosure of local files and SSRF.