| Title | kone-net go-chat f9e58d0 Arbitrary File Read |
|---|
| Description | This endpoint allows users to read arbitrary files on the web server. Due to the lack of input sanitization, it is vulnerable to directory traversal, enabling attackers to write files outside the intended directory structure.
Details can be found in http://github.com/kone-net/go-chat/issues/14. |
|---|
| Source | ⚠️ http://github.com/kone-net/go-chat/issues/14 |
|---|
| User | Tritium (UID 50779) |
|---|
| Submission | 07/02/2025 11:18 (10 months ago) |
|---|
| Moderation | 07/11/2025 10:42 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 316096 [kone-net go-chat up to f9e58d0afa9bbdb31faf25e7739da330692c4c63 Endpoint file_controller.go GetFile fileName path traversal] |
|---|
| Points | 18 |
|---|