ReportizFlow
Filtered by vendor Lsfusion
Subscriptions
Filtered by product Lsfusion Platform
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-13261 | 1 Lsfusion | 2 Lsfusion Platform, Platform | 2025-12-01 | 5.3 Medium |
| A vulnerability was found in lsfusion platform up to 6.1. Affected is the function DownloadFileRequestHandler of the file web-client/src/main/java/lsfusion/http/controller/file/DownloadFileRequestHandler.java. Performing manipulation of the argument Version results in path traversal. Remote exploitation of the attack is possible. The exploit has been made public and could be used. | ||||
Page 1 of 1.