Vulnerabilities > Novel Boutique House Plus Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-29 | CVE-2021-30048 | Path Traversal vulnerability in Novel Boutique House-Plus Project Novel Boutique House-Plus 3.5.1 Directory Traversal in the fileDownload function in com/java2nb/common/controller/FileController.java in Novel-plus (?????-plus) 3.5.1 allows attackers to read arbitrary files via the filePath parameter. | 5.3 |