webui-aria2 commit 4fe2e was discovered to contain a path traversal vulnerability.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Ziahamza
  • Webui-aria2

Configuration 1 [-]

cpe:2.3:a:ziahamza:webui-aria2:-:*:*:*:*:*:*:*
References
Link Resource
https://gist.github.com/JafarAkhondali/528fe6c548b78f454911fb866b23f66e Exploit Third Party Advisory
https://github.com/ziahamza/webui-aria2/blob/109903f0e2774cf948698cd95a01f77f33d7dd2c/node-server.js#L10 Product
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-08-22T00:00:00

Updated: 2023-08-22T12:39:10.141578

Reserved: 2023-07-25T00:00:00

Link: CVE-2023-39141

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-08-22T19:16:39.563

Modified: 2023-08-28T19:15:08.230

Link: CVE-2023-39141

JSON object: View

cve-icon Redhat Information

No data.

CWE