filename'information

Titre	elunez eladmin <=v2.7 Path Traversal: 'dir/../../filename'
Description	Eladmin v2.7 has an arbitrary file upload vulnerability in the Database management and Deployment management. Attackers can construct filenames like ../../file to upload arbitrary files to arbitrary directories or delete arbitrary files in arbitrary directories. Details can be seen in: https://github.com/elunez/eladmin/issues/851
La source	⚠️ https://github.com/elunez/eladmin/issues/851
Utilisateur	nerowander (UID 72513)
Soumission	26/07/2024 09:32 (il y a 2 ans)
Modérer	04/08/2024 08:10 (9 days later)
Statut	Accepté
Entrée VulDB	273551 [elunez eladmin jusqu’à 2.7 Database Management/Deployment Management upload Fichier élévation de privilèges]
Points	18

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!