Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:GHSA-49R2-73M6-PP8F
HistoryApr 19, 2021 - 2:51 p.m.

Directory traversal in development mode handler in Vaadin 14 and 15-17

2021-04-1914:51:58
Google
osv.dev
13

0.004 Low

EPSS

Percentile

72.6%

JSON

Improper URL validation in development mode handler in com.vaadin:flow-server versions 2.0.0 through 2.4.1 (Vaadin 14.0.0 through 14.4.2), and 3.0 prior to 5.0 (Vaadin 15 prior to 18) allows attacker to request arbitrary files stored outside of intended frontend resources folder.

Related

prion 1
osv 2
cve 1
vaadin 1
cvelist 1
github 2
veracode 1
nvd 1
prion
prion
Input validation
2021-04-23 16:15:00
osv
osv
CVE-2020-36321
2021-04-23 16:15:08
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:48:15
cve
cve
CVE-2020-36321
2021-04-23 16:15:08
vaadin
vaadin
Directory traversal in development mode handler in Vaadin 14 and 15-17
2020-11-26 00:00:00
cvelist
cvelist
CVE-2020-36321 Directory traversal in development mode handler in Vaadin 14 and 15-17
2020-11-26 00:00:00
github
github
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:48:15
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:51:58
veracode
veracode
Directory Traversal
2021-04-20 06:25:17
nvd
nvd
CVE-2020-36321
2021-04-23 16:15:08

0.004 Low

EPSS

Percentile

72.6%

JSON
Related for OSV:GHSA-49R2-73M6-PP8F
prion1osv2cve1vaadin1cvelist1github2veracode1nvd1