mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
686 B
686 B
CVE-2019-15714
Description
cli/lib/main.js in Entropic before 2019-06-13 does not reject / and \ in command names, which might allow a directory traversal attack in unusual situations.
POC
Reference
- https://github.com/entropic-dev/entropic/issues/251
- https://github.com/entropic-dev/entropic/issues/251
Github
No PoCs found on GitHub currently.