Filtered by vendor Rubedo Project Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2018-16836 1 Rubedo Project 1 Rubedo 2024-11-21 9.8 Critical
Rubedo through 3.4.0 contains a Directory Traversal vulnerability in the theme component, allowing unauthenticated attackers to read and execute arbitrary files outside of the service root path, as demonstrated by a /theme/default/img/%2e%2e/..//etc/passwd URI.