Vulnerabilities > Hybridsoftware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-22 | CVE-2022-41216 | Path Traversal vulnerability in Hybridsoftware Cloudflow 2.0.0/2.3.1 Local File Inclusion vulnerability within Cloudflow allows attackers to retrieve confidential information from the system. | 8.8 |
| 2023-02-22 | CVE-2022-41217 | Unrestricted Upload of File with Dangerous Type vulnerability in Hybridsoftware Cloudflow 2.0.0/2.3.1 Cloudflow contains a unauthenticated file upload vulnerability, which makes it possible for an attacker to upload malicious files to the CLOUDFLOW PROOFSCOPE built-in storage. | 9.8 |