Vulnerabilities (CVE)

Filtered by vendor Sharelatex Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-0934 1 Sharelatex 1 Sharelatex 2024-11-21 6.5 MEDIUM N/A
Common LaTeX Service Interface (CLSI) before 0.1.3, as used in ShareLaTeX before 0.1.3, allows remote authenticated users to execute arbitrary code via ` (backtick) characters in a filename.
CVE-2015-0933 1 Sharelatex 1 Sharelatex 2024-11-21 3.5 LOW N/A
Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include command.