Import File Converter - local File inclusion
Low
E
ExpressionEngine
Submitted None
Team Summary
Official summary from ExpressionEngine
@lawrenceamer discovered a local file inclusion vulnerability that logged in users with access to the control panel and permission to access developer utilities may be able to exploit. @lawrenceamer gave a detailed report with step-by-step instructions for replicating and screen captures of a their results, enabling a speedy resolution to the issue.
Actions:
Reported by
0xsp
Report Details
Additional information and metadata
State
Closed
Substate
Resolved