Description
Zaver through 2020-12-15 allows directory traversal via the GET /.. substring.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
No advisories yet.
References
| Link | Providers |
|---|---|
| https://github.com/zyearn/zaver/issues/22 |
|
History
No history.
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T11:02:14.672Z
Reserved: 2022-08-27T00:00:00.000Z
Link: CVE-2022-38794
No data.
Status : Modified
Published: 2022-08-27T21:15:08.890
Modified: 2026-06-17T04:57:11.030
Link: CVE-2022-38794
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')