CVE-2021-26629
tobesoft XPLATFORM Path Traversal Vulnerability
A path traversal vulnerability in XPLATFORM's runtime archive function could lead to arbitrary file creation. When the .xzip archive file is decompressed, an arbitrary file can be d in the parent path by using the path traversal pattern ‘..\’.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Productos afectados
tobesoft Co.,Ltd · XPLATFORM¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →