CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-43264

Arobas Music Guitar Pro for iPad and iPhone before v1.10.2 allows attackers to perform directory traversal and download arbitrary files via a crafted web request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.9%

CVSS Severity

CVSS v3 Score 7.5

References

https://www.pizzapower.me/2022/10/11/guitar-pro-directory-traversal-and-filename-xss/
https://www.pizzapower.me/2022/10/11/guitar-pro-directory-traversal-and-filename-xss/

Products affected by CVE-2022-43264

Guitar-Pro » Guitar Pro » Version: N/A

cpe:2.3:a:guitar-pro:guitar_pro:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-43264

Products

Pricing

Contact Us