Skip to content
This repository has been archived by the owner on May 8, 2023. It is now read-only.

AeroCMS v0.0.1 Directory traversal vulnerability #7

Open
w4n95 opened this issue Nov 27, 2022 · 0 comments
Open

AeroCMS v0.0.1 Directory traversal vulnerability #7

w4n95 opened this issue Nov 27, 2022 · 0 comments

Comments

@w4n95
Copy link

w4n95 commented Nov 27, 2022

  • Description

AeroCMS v0.0.1 was discovered to contain a Directory traversal vulnerability. The vulnerability is due to the failure to normalize the url. This vulnerability allows an attacker to read arbitrary files in the root directory of a website.

  • Reproduct
  1. Access any interfaces of Folder Path,For example, "/includes, /images, /js, /fonts, css, /admin and /admin/*"
    image
  2. Within Burpsuite, concat multiple "../" in url,that can access any file in the server root directory, include configuration files or other website files
    image
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@w4n95