Etherpad: >> Etherpad >> 1.5.1 Security Vulnerabilities
Directory traversal vulnerability in node/hooks/express/tests.js in Etherpad frontend tests before 1.6.1.
CVSS Score
7.5
EPSS Score
0.004
Published
2017-09-07
Directory traversal vulnerability in node/utils/Minify.js in Etherpad 1.1.1 through 1.5.2 allows remote attackers to read arbitrary files by leveraging replacement of backslashes with slashes in the path parameter of HTTP API requests.
CVSS Score
7.5
EPSS Score
0.038
Published
2017-07-07
Page 2