जमा करें #497329: iteachyou Dreamer CMS 4.1.3 Path Traversalजानकारी

शीर्षकiteachyou Dreamer CMS 4.1.3 Path Traversal
विवरणA Path Traversal vulnerability via /resource/js/ueditor-x.x.x.x endpoint exists in Dreamer CMS 4.1.3, allowing attackers to read arbitrary files on the server. This vulnerability occurs due to improper sanitization of user-supplied input when fetching resources via a GET request. An attacker can exploit this flaw to access sensitive files from the server (e.g. .gitignore ).
स्रोत⚠️ https://github.com/cydtseng/Vulnerability-Research/blob/main/dreamercms/PathTraversal-UeditorResource.md
उपयोगकर्ता
 vastzero (UID 78767)
सबमिशन09/02/2025 04:44 PM (1 वर्ष पहले)
संयम21/02/2025 10:50 AM (12 days later)
स्थितिस्वीकृत
VulDB प्रविष्टि296489 [iteachyou Dreamer CMS 4.1.3 ueditor-1.4.3.3 निर्देशिका ट्रैवर्सल]
अंक19

Interested in the pricing of exploits?

See the underground prices here!