Vulnerabilities > Safe > FME Server > 2022.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-23 | CVE-2023-35801 | Path Traversal vulnerability in Safe FME Server A directory traversal vulnerability in Safe Software FME Server before 2022.2.5 allows an attacker to bypass validation when editing a network-based resource connection, resulting in the unauthorized reading and writing of arbitrary files. | 8.1 |
| 2022-09-19 | CVE-2022-38339 | Cross-site Scripting vulnerability in Safe FME Server Safe Software FME Server v2021.2.5, v2022.0.0.2 and below contains a cross-site scripting (XSS) vulnerability which allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the login page. | 6.1 |