| Title | Smartbit(http://www.smartschool.be/) Smartschool (be.smartschool.mobile) V10.4.4 Path Traversal |
|---|
| Description | The Smartschool app lacks proper security checks during the file import process, allowing unauthorized apps to control the file name and content and use path traversal to overwrite arbitrary files in the app’s internal storage, which may lead to arbitrary code execution, exposure of sensitive information, denial of service, and other security impacts. |
|---|
| Source | ⚠️ https://github.com/Secsys-FDU/AF_CVEs/issues/4 |
|---|
| User | Lu1u (UID 92433) |
|---|
| Submission | 12/04/2025 14:37 (5 months ago) |
|---|
| Moderation | 12/14/2025 19:42 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 336419 [Smartbit CommV Smartschool App up to 10.4.4 be.smartschool.mobile.SplashActivity path traversal] |
|---|
| Points | 18 |
|---|