| タイトル | halo <=2.24.2 Arbitrary File Write(AFW) |
|---|
| 説明 | https://github.com/halo-dev/halo
I first reported this vulnerability privately via email approximately 30 days ago. As the project author has not responded, I am now proceeding with public disclosure via this GitHub Issue and would like to request a CVE ID for this vulnerability.
The detailed vulnerability information has been submitted to this project's Issues. Please review it at the following link:
https://github.com/halo-dev/halo/issues/10062
|
|---|
| ソース | ⚠️ https://github.com/halo-dev/halo/issues/10062 |
|---|
| ユーザー | rekczh (UID 98239) |
|---|
| 送信 | 2026年06月09日 16:09 (1 月 ago) |
|---|
| モデレーション | 2026年07月09日 20:20 (1 month later) |
|---|
| ステータス | 承諾済み |
|---|
| VulDBエントリ | 377265 [halo-dev halo 迄 2.24.2 Theme Installation ThemeUtils.java ThemeUtils.unzipThemeTo metadata.name ディレクトリトラバーサル] |
|---|
| ポイント | 20 |
|---|