Vulnerability CVE-2022-23167
Published: 2022-06-13

Description:
Attacker crafts a GET request to: /mobile/downloadfile.aspx? Filename =../.. /windows/boot.ini the LFI is UNAUTHENTICATED.

 References:
https://www.gov.il/en/departments/faq/cve_advisories
Copyright 2026, cxsecurity.com

 

Back to Top