Filtered by vendor Browserless Subscriptions
Filtered by product Chrome Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-7758 1 Browserless 1 Chrome 2024-11-21 7.5 High
This affects versions of package browserless-chrome before 1.40.2-chrome-stable. User input flowing from the workspace endpoint gets used to create a file path filePath and this is fetched and then sent back to a user. This can be escaped to fetch arbitrary files from a server.