Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in VirtoSoftware Virto Bulk File Download 5.5.44 for SharePoint 2019. The Virto.SharePoint.FileDownloader/Api/Download.ashx isCompleted method allows arbitrary file download and deletion via absolute path traversal in the path parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VirtoSoftware Virto Bulk File Download 安全漏洞
Vulnerability Description
VirtoSoftware Virto Bulk File Download是美国VirtoSoftware公司的一个批量文件下载应用程序。 VirtoSoftware SharePoint Bulk File Download 5.5.44版本存在安全漏洞,该漏洞源于允许通过路径参数中的绝对路径遍历下载和删除任意文件。
CVSS Information
N/A
Vulnerability Type
N/A