Описание
Path Traversal in the Logs plugin for Craft CMS
The Logs plugin before 3.0.4 for Craft CMS allows remote attackers to read arbitrary files via input to actionStream in Controller.php.
Ссылки
Пакеты
Наименование
ether/logs
composer
Затронутые версииВерсия исправления
< 3.0.4
3.0.4
Связанные уязвимости
CVSS3: 4.9
nvd
около 4 лет назад
The Logs plugin before 3.0.4 for Craft CMS allows remote attackers to read arbitrary files via input to actionStream in Controller.php.