Description
A path traversal in takeapeek module versions <=0.2.2 allows an attacker to list directory and files.
Remediation
References
https://hackerone.com/reports/403736
Related Vulnerabilities
CVE-2022-24948 Vulnerability in maven package org.apache.jspwiki:jspwiki-main
CVE-2021-33611 Vulnerability in maven package org.webjars.bowergithub.vaadin:vaadin-menu-bar
CVE-2022-34115 Vulnerability in maven package io.dataease:dataease-plugin-common
CVE-2019-13236 Vulnerability in maven package org.opencms:opencms-core
CVE-2018-20677 Vulnerability in maven package org.webjars.bower:bootstrap-sass