Title: CVE-2022-35246 | Rocket.Chat up to 4.7.4/4.8.1 Meteor Server getS3FileUrl injection
Description: A vulnerability was found in Rocket.Chat up to 4.7.4/4.8.1. It has been rated as problematic. This issue affects the function getS3FileUrl of the component Meteor Server. The manipulation leads to injection.
Link:
https://vuldb.com/?id.209501
Sat, 24 Sep 2022 09:24:11 +0200
--- The information is for informational purposes only.
* Origin: Read us with
http://winpoint.org/ (2:467/888.88)