RSS   Vulnerabilities for 'Wavemarker studio'   RSS

2019-02-21
 
CVE-2019-8982

CWE-918
 

 
com/wavemaker/studio/StudioService.java in WaveMaker Studio 6.6 mishandles the studioService.download?method=getContent&inUrl= value, leading to disclosure of local files and SSRF.

 


Copyright 2019, cxsecurity.com

 

Back to Top