CVE-2016-10733
-
ProjectSend (formerly cFTP) r582 allows directory traversal via file=../ in the process-zip-download.php query string.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-10733
© Lightnetics 2024