nuclei-templates

Commit Graph

Author	SHA1	Message	Date
GwanYeong Kim	a2cec40a5d	Create goip-1-lfi.yaml Input passed thru the 'content' or 'sidebar' GET parameter in 'frame.html' or 'frame.A100.html' not properly sanitized before being used to read files. This can be exploited by an unauthenticated attacker to read arbitrary files on the affected system. Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>	2022-02-18 21:33:17 +09:00

Author

SHA1

Message

Date

GwanYeong Kim

a2cec40a5d

Create goip-1-lfi.yaml

Input passed thru the 'content' or 'sidebar' GET parameter in 'frame.html' or 'frame.A100.html' not properly sanitized before being used to read files. This can be exploited by an unauthenticated attacker to read arbitrary files on the affected system.

Signed-off-by: GwanYeong Kim <gy741.kim@gmail.com>

2022-02-18 21:33:17 +09:00

1 Commits (a2cec40a5dee0cd0c6d6a283e010dfce7f777ad8)