Vulnerabilities > Foswiki > Foswiki > 2.1.6

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-24698 Path Traversal vulnerability in Foswiki
Insufficient parameter validation in the Foswiki::Sandbox component of Foswiki v2.1.7 and below allows attackers to perform a directory traversal via supplying a crafted web request.
network
low complexity
foswiki CWE-22
7.5
7.5
2023-08-08 CVE-2023-33756 Path Traversal vulnerability in Foswiki
An issue in the SpreadSheetPlugin component of Foswiki v2.1.7 and below allows attackers to execute a directory traversal.
network
low complexity
foswiki CWE-22
7.5
7.5