geneweb 4.10 and earlier does not properly check file permissions and content during conversion, which allows attackers to modify arbitrary files.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Geneweb |
Daniel_de_rauglaudre |
* |
4.10 (including) |
References