Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
veracodeVeracode Vulnerability DatabaseVERACODE:39804
HistoryMar 17, 2023 - 1:45 a.m.

Path Traversal

2023-03-1701:45:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
swig-templates
vulnerability
template restrictions
path traversal
attacker access
includes tags
extends tags
software

EPSS

0.002

Percentile

54.5%

JSON

swig-templates is vulnerable to Path Traversal. The vulnerability exists due to improper template restrictions which allows an attacker to access and read the files outside the restricted directory through the include or extends tags.

Related

nvd 1
cvelist 1
cve 1
osv 2
prion 1
github 1
nvd
nvd
CVE-2023-25345
2023-03-15 20:15:10
cvelist
cvelist
CVE-2023-25345
2023-03-15 00:00:00
cve
cve
CVE-2023-25345
2023-03-15 20:15:10
osv
osv
Arbitrary local file read vulnerability during template rendering
2023-03-15 21:30:25
CVE-2023-25345
2023-03-15 20:15:10
prion
prion
Directory traversal
2023-03-15 20:15:00
github
github
Arbitrary local file read vulnerability during template rendering
2023-03-15 21:30:25

EPSS

0.002

Percentile

54.5%

JSON
Related for VERACODE:39804
nvd1cvelist1cve1osv2prion1github1