Lucene search
Veracode Vulnerability DatabaseVERACODE:30044HistoryApr 20, 2021 - 6:25 a.m.
Directory Traversal
2021-04-2006:25:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
2
0.004 Low
EPSS
Percentile
72.6%
flow-server is vulnerable to directory traversal. The attack is possible due to a lack of proper validation of URL path, allowing an attacker to inject ../ characters into in parameters to access resources outside of the web root.
| CPE | Name | Operator | Version |
|---|---|---|---|
| flow server | le | 4.0.5 | |
| flow server | le | 2.4.0 |
Related
prion
prion
Input validation
2021-04-23 16:15:00
osv
osv
CVE-2020-36321
2021-04-23 16:15:08
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:48:15
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:51:58
cve
cve
CVE-2020-36321
2021-04-23 16:15:08
vaadin
vaadin
Directory traversal in development mode handler in Vaadin 14 and 15-17
2020-11-26 00:00:00
cvelist
cvelist
github
github
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:48:15
Directory traversal in development mode handler in Vaadin 14 and 15-17
2021-04-19 14:51:58
nvd
nvd
CVE-2020-36321
2021-04-23 16:15:08