CVE-2023-40828

An issue in pf4j pf4j v.3.9.0 and before allows a remote attacker to obtain sensitive information and execute arbitrary code via the expandIfZip method in the extract function. (CVSS:7.5) (EPSS:0.21%) (Last Update:2023-08-29 23:57:27)   Latest security vulnerabilities (Directory Traversal) (CVSS score >= 4) 

​  

More To Explore