CVE-2022-36243

MEDIUM

Shop Beat Media Player <3.2.57 - Path Traversal

Title source: llm

Description

Shop Beat Solutions (pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to Directory Traversal via server.shopbeat.co.za. Information Exposure Through Directory Listing vulnerability in "studio" software of Shop Beat. This issue affects: Shop Beat studio studio versions prior to 3.2.57 on arm.

References (1)

[Product] https://www.shopbeat.co.za

Scores

CVSS v3 5.3

EPSS 0.0025

EPSS Percentile 47.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Classification

CWE

CWE-22 CWE-548

Status published

Affected Products (1)

shopbeat/shop_beat_media_player < 3.2.57

Timeline

Published May 30, 2023

Tracked Since Feb 18, 2026