← Back to CVE List
CVE-2022-42188
Published:
2022-10-18T19:15Z
Last Modified:
2024-11-21T07:24Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
In Lavalite 9.0.0, the XSRF-TOKEN cookie is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt