Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Widoco WidocoUtils.java unZipIt path traversal
Vulnerability Description
A vulnerability was found in Widoco and classified as critical. Affected by this issue is the function unZipIt of the file src/main/java/widoco/WidocoUtils.java. The manipulation leads to path traversal. It is possible to launch the attack on the local host. The name of the patch is f2279b76827f32190adfa9bd5229b7d5a147fa92. It is recommended to apply a patch to fix this issue. VDB-216914 is the identifier assigned to this vulnerability.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
WIzard for DOCumenting Ontologies 路径遍历漏洞
Vulnerability Description
WIzard for DOCumenting Ontologies(WIDOCO)是Daniel Garijo个人开发者的一个 HTML 模板的分步生成器,其中包含本体的文档。通过在 GUI 中执行一系列步骤,帮助您自动发布和创建丰富的、自定义的本体文档。 WIzard for DOCumenting Ontologies 存在路径遍历漏洞,该漏洞源于文件src/main/java/widoco/WidocoUtils.java的函数unZipIt存在问题,会导致路径遍历。
CVSS Information
N/A
Vulnerability Type
N/A