Submeter #706220: Smartbit(http://www.smartschool.be/) Smartschool (be.smartschool.mobile) V10.4.4 Path Traversalinformação

TítuloSmartbit(http://www.smartschool.be/) Smartschool (be.smartschool.mobile) V10.4.4 Path Traversal
DescriçãoThe Smartschool app lacks proper security checks during the file import process, allowing unauthorized apps to control the file name and content and use path traversal to overwrite arbitrary files in the app’s internal storage, which may lead to arbitrary code execution, exposure of sensitive information, denial of service, and other security impacts.
Fonte⚠️ https://github.com/Secsys-FDU/AF_CVEs/issues/4
Utilizador
 Lu1u (UID 92433)
Submissão04/12/2025 14h37 (há 5 meses)
Moderação14/12/2025 19h42 (10 days later)
EstadoAceite
Entrada VulDB336419 [Smartbit CommV Smartschool App até 10.4.4 be.smartschool.mobile.SplashActivity Travessia de Diretório]
Pontos18

VoltarVisão GeralPróximo

Want to know what is going to be exploited?

We predict KEV entries!