FileRun 2019.05.21 allows images/extjs Directory Listing. This issue has been fixed in FileRun 2019.06.01.
References
Link | Resource |
---|---|
https://emreovunc.com/blog/en/FileRun-DirectoryListing-1.png | Exploit Third Party Advisory |
https://filerun.com/changelog | Release Notes Vendor Advisory |
https://github.com/EmreOvunc/FileRun-Vulnerabilities/ | Exploit Third Party Advisory |
https://github.com/EmreOvunc/FileRun-Vulnerabilities/issues/3 | Third Party Advisory |
https://emreovunc.com/blog/en/FileRun-DirectoryListing-1.png | Exploit Third Party Advisory |
https://filerun.com/changelog | Release Notes Vendor Advisory |
https://github.com/EmreOvunc/FileRun-Vulnerabilities/ | Exploit Third Party Advisory |
https://github.com/EmreOvunc/FileRun-Vulnerabilities/issues/3 | Third Party Advisory |
Configurations
History
21 Nov 2024, 04:22
Type | Values Removed | Values Added |
---|---|---|
References | () https://emreovunc.com/blog/en/FileRun-DirectoryListing-1.png - Exploit, Third Party Advisory | |
References | () https://filerun.com/changelog - Release Notes, Vendor Advisory | |
References | () https://github.com/EmreOvunc/FileRun-Vulnerabilities/ - Exploit, Third Party Advisory | |
References | () https://github.com/EmreOvunc/FileRun-Vulnerabilities/issues/3 - Third Party Advisory |
Information
Published : 2019-05-30 14:29
Updated : 2024-11-21 04:22
NVD link : CVE-2019-12457
Mitre link : CVE-2019-12457
CVE.ORG link : CVE-2019-12457
JSON object : View
Products Affected
afian
- filerun
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')