Skip to the content.

CVE-2022-41216 - Cloudflow - Local File Inclusion Vulnerability

CVE CVE-2022-41216
Discovered by
  • Witold Gorecki
Affected products
Product Affected Unaffected Unknown
Hybrid Software Cloudflow on Windows, MacOS, Linux >= 2.x.y &lt; 2.3.1 to < 2.3.1
everything else
Page author Victor Pasman
CVSS Base score: 8.3 (HIGH)
Problem type(s) CWE-829: Inclusion of Functionality from Untrusted Control Sphere
Impact(s) CAPEC-252 PHP Local File Inclusion
Solution(s) Upgrade to version 2.3.2 of Cloudflow
Last modified 21 Feb 2023 21:05


Local File Inclusion vulnerability within Cloudflow allows attackers to retrieve confidential information from the system.

JSON version