OpenText Flipper Path Traversal Vulnerability Allowing Local File Inclusion

Vulnerability

A path traversal vulnerability allowing external control of file names has been identified in OpenText Flipper version 3.1.2. This vulnerability enables users to submit a stored local file path and download the specified file from the system by requesting the stored document ID.

Impact

Exploitation of this vulnerability could lead to unauthorized access to local files on the server where OpenText Flipper is running.

Added: Oct 20, 2025, 8:19 PM

Updated: Oct 20, 2025, 8:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.8

remediation

0.0

relevance

0.7

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenText Flipper Path Traversal Vulnerability Allowing Local File Inclusion

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating