Repetier-Server: >> Repetier-Server >> 0.93.0 Security Vulnerabilities
Repetier Server through 1.4.10 allows ..%5c directory traversal for reading files that contain credentials, as demonstrated by connectionLost.php.
CVSS Score
7.5
EPSS Score
0.877
Published
2023-04-24
Repetier Server through 1.4.10 executes as SYSTEM. This can be leveraged in conjunction with CVE-2023-31059 for full compromise.
CVSS Score
9.8
EPSS Score
0.008
Published
2023-04-24
Repetier Server through 1.4.10 does not have CSRF protection.
CVSS Score
8.8
EPSS Score
0.006
Published
2023-04-24