cve/CVE-2018-18950.md at 7482ec4521a75dd13882dc1283f17009c936e974

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

KindEditor through 4.1.11 has a path traversal vulnerability in php/upload_json.php. Anyone can browse a file or directory in the kindeditor/attached/ folder via the path parameter without authentication.

POC

Reference

No PoCs from references.

Github

https://github.com/0xUhaw/CVE-Bins
https://github.com/ARPSyndicate/cvemon
https://github.com/HaleBera/A-NOVEL-CONTAINER-ATTACKS-DATASET-FOR-INTRUSION-DETECTION-Deployments
https://github.com/eddietcc/CVEnotes

831 B Raw Blame History

CVE-2018-18950

Description

POC

Reference

Github

831 B

Raw Blame History