FileRun 2019.05.21 allows customizables/plugins/audio_player Directory Listing. This issue has been fixed in FileRun 2019.06.01.
References
Link | Resource |
---|---|
https://github.com/EmreOvunc/FileRun-Vulnerabilities/ | Exploit Third Party Advisory |
https://filerun.com/changelog | Release Notes Vendor Advisory |
https://emreovunc.com/blog/en/FileRun-DirectoryListing-3.png | Exploit Third Party Advisory |
https://github.com/EmreOvunc/FileRun-Vulnerabilities/issues/3 | Third Party Advisory |
Configurations
Information
Published : 2019-05-30 07:29
Updated : 2021-03-22 17:15
NVD link : CVE-2019-12459
Mitre link : CVE-2019-12459
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
afian
- filerun