| Titel | Smartbit(http://www.smartschool.be/) Smartschool (be.smartschool.mobile) V10.4.4 Path Traversal |
|---|
| Beschreibung | The Smartschool app lacks proper security checks during the file import process, allowing unauthorized apps to control the file name and content and use path traversal to overwrite arbitrary files in the app’s internal storage, which may lead to arbitrary code execution, exposure of sensitive information, denial of service, and other security impacts. |
|---|
| Quelle | ⚠️ https://github.com/Secsys-FDU/AF_CVEs/issues/4 |
|---|
| Benutzer | Lu1u (UID 92433) |
|---|
| Einreichung | 04.12.2025 14:37 (vor 5 Monaten) |
|---|
| Moderieren | 14.12.2025 19:42 (10 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 336419 [Smartbit CommV Smartschool App bis 10.4.4 be.smartschool.mobile.SplashActivity Directory Traversal] |
|---|
| Punkte | 18 |
|---|