Categories ⋅ Keywords ⋅ Packages Advisories in category 'file-disclosure' March 23, 2023 RUSTSEC-2023-0023: Vulnerability in openssl openssl SubjectAlternativeName and ExtendedKeyUsage::other allow arbitrary file read January 29, 2023 RUSTSEC-2022-0082: Vulnerability in warp Improper validation of Windows paths could lead to directory traversal attack November 30, 2022 RUSTSEC-2022-0069: Vulnerability in hyper-staticfile Improper validation of Windows paths could lead to directory traversal attack August 5, 2022 RUSTSEC-2022-0043: Vulnerability in tower-http Improper validation of Windows paths could lead to directory traversal attack January 21, 2022 RUSTSEC-2021-0135 (withdrawn advisory) January 21, 2022 HIGH CVE-2022-21658: Vulnerability in std Time-of-check time-of-use race condition can allow attacker to delete files they do not have access to delete November 29, 2021 RUSTSEC-2021-0126: Vulnerability in rust-embed RustEmbed generated get method allows for directory traversal when reading files from disk September 9, 2021 LOW RUSTSEC-2021-0104: Vulnerability in pleaser File exposure in pleaser September 9, 2021 HIGH RUSTSEC-2021-0105: Vulnerability in git-delta Relative Path Traversal in git-delta November 11, 2020 MEDIUM RUSTSEC-2020-0069: Vulnerability in lettre Argument injection in sendmail transport