admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-06-20 18:00:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

add CVE-2020-24571

Browse Source
This commit is contained in:
tardc 2020-12-04 09:54:47 +08:00
parent 3921bf1f15
commit 360a08fbdd
2 changed files with 11 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
NexusDB/CVE-2020-24571/CVE-2020-24571.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 406 KiB

11
NexusDB/CVE-2020-24571/README.md Normal file
View File

@ -0,0 +1,11 @@
# CVE-2020-24571 NexusDB path traversal
NexusQA NexusDB before 4.50.23 allows the reading of files via ../ directory traversal.
**Affected version**: nexusdb < 4.50.23
**[FOFA](https://fofa.so/result?q=header%3D%22Server%3A+NexusDB%22&qbase64=aGVhZGVyPSJTZXJ2ZXI6IE5leHVzREIi&file=&file=) query rule**: header="Server: NexusDB"
# Demo
![](CVE-2020-24571.gif)