Vulnerabilities > CVE-2022-30428 - Files or Directories Accessible to External Parties vulnerability in Ginadmin Project Ginadmin

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
ginadmin-project
CWE-552
NVD
Published: 2022-05-25
Updated: 2022-06-08

Summary

In ginadmin through 05-10-2022, the incoming path value is not filtered, resulting in arbitrary file reading.

Vulnerable Configurations

Part Description Count
Application
Ginadmin_Project
1

Common Weakness Enumeration (CWE)

References