Non-authenticated path traversal leading to arbitrary file read
High
E
ExpressionEngine
Submitted None
Team Summary
Official summary from ExpressionEngine
Insufficient user input filtering leads to arbitrary file read by non-authenticated attacker, which results in sensitive information disclosure.
Actions:
Reported by
d3addog
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Path Traversal