Description
The renderWidgetResource resource in Atlasian Atlasboard before version 1.1.9 allows remote attackers to read arbitrary files via a path traversal vulnerability.
Remediation
References
https://bitbucket.org/atlassian/atlasboard/commits/9c03df09f09399e2601010466e8ba3a28236eb9c
Related Vulnerabilities
CVE-2011-1183 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core
CVE-2023-29017 Vulnerability in npm package vm2
CVE-2018-12022 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2017-5645 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2012-3546 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core