Improper limitation of a pathname to a restricted directory ('Path Traversal') issue exists in FitNesse releases prior to 20241026. If this vulnerability is exploited, an attacker may be able to know whether a file exists at a specific path, and/or obtain some part of the file contents under specific conditions.
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| org.fitnesse:fitnesse(Maven) | 0 | 20241026 | N/A |
CVSS Metrics
