CVE-2022-22701

Published: 2022-01-10T14:12Z

Last Modified: 2024-11-21T06:47Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt