Exploit for Path Traversal in Owasp Enterprise_Security_Api_570E0F80-DC1A-5BA6-B8B1-FCB7AD3225D8

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Please note that:

1) The LICENSE file only refers to the licensing of the source and binary code of ESAPI.
For example, the actual ESAPI JAR file is only licensed under "The BSD License".

2) The LICENSE-CONTENT file only refers to the licensing of the content and documentation of ESAPI.
For example, the documentation directory is only licensed under the Creative Commons/ShareAlike 3.0 Unported license.

Visit Original Source

Basic Information

ID 570E0F80-DC1A-5BA6-B8B1-FCB7AD3225D8

Published Aug 16, 2025 at 14:00

Modified Aug 16, 2025 at 14:01

{
    "lastseen": "2025-08-18T21:27:15",
    "description": "Please note that:\n\n1) The LICENSE file only refers to the licensing of the source and binary code of ESAPI. \n   For example, the actual ESAPI JAR file is only licensed under \"The BSD License\".\n   \n2) The LICENSE-CONTENT file only refers to the licensing of the content and documentation of ESAPI. \n   For example, the documentation directory is only licensed under the Creative Commons/ShareAlike 3.0 Unported license.",
    "published": "2025-08-16T14:00:43",
    "modified": "2025-08-16T14:01:42",
    "type": "githubexploit",
    "title": "Exploit for Path Traversal in Owasp Enterprise_Security_Api",
    "source": "",
    "references": "",
    "id": "570E0F80-DC1A-5BA6-B8B1-FCB7AD3225D8",
    "bulletinFamily": "exploit",
    "cwe": null,
    "cvelist": [
        "CVE-2022-23457"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://github.com/shoucheng3/ESAPI__esapi-java-legacy_CVE-2022-23457_2-2-3-1",
    "category_name": "Exploit",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply