Описание
Path Traversal in FileGator
Path Traversal in FileGator prior to 7.8.0 for non-admin users. Files created with ..\ as part of their name will be interpreted as a path. Users are thus able to add filesystem entries outside the scope of their user to their dashboard and subsequently are able to modify those files.
Пакеты
Наименование
filegator/filegator
composer
Затронутые версииВерсия исправления
< 7.8.0
7.8.0
Связанные уязвимости
CVSS3: 8.1
nvd
больше 3 лет назад
Path Traversal in GitHub repository filegator/filegator prior to 7.8.0.