From 864b209cc1feb35edb14496181974f07adbf9e31 Mon Sep 17 00:00:00 2001 From: Noam Rathaus Date: Mon, 9 Aug 2021 16:10:10 +0300 Subject: [PATCH] Add reference --- vulnerabilities/other/resin-inputfile-fileread.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/vulnerabilities/other/resin-inputfile-fileread.yaml b/vulnerabilities/other/resin-inputfile-fileread.yaml index 6c110bef98..ec2b937c94 100644 --- a/vulnerabilities/other/resin-inputfile-fileread.yaml +++ b/vulnerabilities/other/resin-inputfile-fileread.yaml @@ -5,6 +5,7 @@ info: severity: high description: A vulnerability in Caucho Resin allows remote unauthenticated users to utilize the 'inputFile' variable to include the content of locally stored files and disclose their content. tags: resin,caucho,lfr + reference: https://blkstone.github.io/2017/10/30/resin-attack-vectors/ requests: - method: GET