| Название | kone-net go-chat f9e58d0 Arbitrary File Read |
|---|
| Описание | This endpoint allows users to read arbitrary files on the web server. Due to the lack of input sanitization, it is vulnerable to directory traversal, enabling attackers to write files outside the intended directory structure.
Details can be found in http://github.com/kone-net/go-chat/issues/14. |
|---|
| Источник | ⚠️ http://github.com/kone-net/go-chat/issues/14 |
|---|
| Пользователь | Tritium (UID 50779) |
|---|
| Представление | 02.07.2025 11:18 (10 месяцы назад) |
|---|
| Модерация | 11.07.2025 10:42 (9 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 316096 [kone-net go-chat до f9e58d0afa9bbdb31faf25e7739da330692c4c63 Endpoint file_controller.go GetFile fileName обход каталога] |
|---|
| Баллы | 18 |
|---|