cve/CVE-2023-47624.md at dd6a10065df501f0a524d47b55e162f16811ba93

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

Audiobookshelf is a self-hosted audiobook and podcast server. In versions 2.4.3 and prior, any user (regardless of their permissions) may be able to read files from the local file system due to a path traversal in the /hls endpoint. This issue may lead to Information Disclosure. As of time of publication, no patches are available.

POC

Reference

https://securitylab.github.com/advisories/GHSL-2023-203_GHSL-2023-204_audiobookshelf/

Github

No PoCs found on GitHub currently.

980 B Raw Blame History

CVE-2023-47624

Description

POC

Reference

Github

980 B

Raw Blame History