Description
The improper Input Validation vulnerability in "”Move folder to Trash” feature of Apache Zeppelin allows an attacker to delete the arbitrary files. This issue affects Apache Zeppelin Apache Zeppelin version 0.9.0 and prior versions.
Remediation
References
https://lists.apache.org/thread/bxs056g3xlsofz0jb3wny9dw4llwptd2
Related Vulnerabilities
CVE-2022-28153 Vulnerability in maven package org.jvnet.hudson.plugins:sitemonitor
CVE-2020-15095 Vulnerability in npm package npm
CVE-2019-16728 Vulnerability in maven package org.webjars.bower:dompurify
CVE-2023-35160 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web-templates
CVE-2016-4434 Vulnerability in maven package org.apache.tika:tika-parsers