Submeter #380498: elunez eladmin <=v2.7 Path Traversal: 'dir/../../filename'informação

Títuloelunez eladmin <=v2.7 Path Traversal: 'dir/../../filename'
DescriçãoEladmin v2.7 has an arbitrary file upload vulnerability in the Database management and Deployment management. Attackers can construct filenames like ../../file to upload arbitrary files to arbitrary directories or delete arbitrary files in arbitrary directories. Details can be seen in: https://github.com/elunez/eladmin/issues/851
Fonte⚠️ https://github.com/elunez/eladmin/issues/851
Utilizador
 nerowander (UID 72513)
Submissão26/07/2024 09h32 (há 2 anos)
Moderação04/08/2024 08h10 (9 days later)
EstadoAceite
Entrada VulDB273551 [elunez eladmin até 2.7 Database Management/Deployment Management upload Ficheiro Elevação de Privilégios]
Pontos18

VoltarVisão GeralPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!