CVE-2023-35816 | DevExpress up to 23.1.2 TypeConverter path traversal

Inserito da Angelo Barbosa | Apr 28, 2025 | CVE

A vulnerability has been found in DevExpress up to 23.1.2 and classified as problematic. This vulnerability affects unknown code of the component TypeConverter Handler. The manipulation leads to relative path traversal.

This vulnerability was named CVE-2023-35816. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-35816 | DevExpress up to 23.1.2 TypeConverter path traversal

Post correlati

CVE-2024-10814 | Code Embed Plugin up to 2.5 on WordPress server-side request forgery

CVE-2025-2880 | Yame Plugin up to 0.9.0 on WordPress phpinfo.php information disclosure

CVE-2024-27996 | Survey Maker Plugin up to 4.0.5 on WordPress cross site scripting

CVE-2024-52410 | Phoenixheart Referrer Detector Plugin up to 4.2.1.0 on WordPress deserialization