| Titre | kone-net go-chat f9e58d0 Arbitrary File Read |
|---|
| Description | This endpoint allows users to read arbitrary files on the web server. Due to the lack of input sanitization, it is vulnerable to directory traversal, enabling attackers to write files outside the intended directory structure.
Details can be found in http://github.com/kone-net/go-chat/issues/14. |
|---|
| La source | ⚠️ http://github.com/kone-net/go-chat/issues/14 |
|---|
| Utilisateur | Tritium (UID 50779) |
|---|
| Soumission | 02/07/2025 11:18 (il y a 10 mois) |
|---|
| Modérer | 11/07/2025 10:42 (9 days later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 316096 [kone-net go-chat Endpoint file_controller.go GetFile fileName directory traversal] |
|---|
| Points | 18 |
|---|