2026-03-23 20:59:28
cisa-cg
PUBLISHED
Census CSWeb 8.0.1 allows arbitrary file path input. A remote, authenticated attacker could access unintended file directories. Fixed in 8.1.0 alpha.