Thinkup
1 CVEs
product
Monthly
ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
PHP
Path Traversal
Thinkup
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.4%
EPSS 1%
CVSS 9.8
CRITICAL
POC
Act Now
ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
PHP
Path Traversal
Thinkup
NVD
GitHub