CVE-2023-50263 | Nautobot up to 1.6.6/2.0.5 /files/get/ name information disclosure (GHSA-75mc-3pjc-727q)

Inserito da Angelo Barbosa | Dic 13, 2023 | CVE

A vulnerability, which was classified as problematic, has been found in Nautobot up to 1.6.6/2.0.5. Affected by this issue is some unknown functionality of the file /files/get/. The manipulation of the argument name leads to information disclosure.

This vulnerability is handled as CVE-2023-50263. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-50263 | Nautobot up to 1.6.6/2.0.5 /files/get/ name information disclosure (GHSA-75mc-3pjc-727q)

Post correlati

CVE-2023-51423 | Saleswonder Team Webinar Plugin up to 3.05.0 on WordPress sql injection

CVE-2024-30094 | Microsoft Windows up to Server 2022 23H2 Routing/Remote Access Service heap-based overflow

CVE-2024-2069 | SourceCodester FAQ Management System 1.0 /endpoint/delete-faq.php faq sql injection

CVE-2024-40681 | IBM MQ Operator 2.0.26/3.2.4 Queue Manager privileges assignment (XFDB-297611)