CVE-2022-46492
MEDIUM WAF: High
CVSS 6.5
Published: 2022-12-23
CWE-22 CWE-22
nbnbk commit 879858451d53261d10f77d4709aee2d01c72c301 was discovered to contain an arbitrary file read vulnerability via the component /api/Index/getFileBinary.
WAF Coverage Analysis
Path Traversal
High WAF Coverage
OWASP: A01:2021 Broken Access Control
930xxx - Local File Inclusion
Path Traversal
High WAF Coverage
OWASP: A01:2021 Broken Access Control
930xxx - Local File Inclusion
Affected Software
| Vendor | Product | Version |
|---|---|---|
| nbnbk_project | nbnbk | - |
References
- github.com (Exploit, Issue Tracking, Third Party Advisory)