CVE-2020-7758

Posted on 2020년 11월 3일2020년 11월 3일 by admin

CVE-2020-7758

This affects all versions of package browserless-chrome. User input flowing from the workspace endpoint gets used to create a file path filePath and this is fetched and then sent back to a user. This can be escaped to fetch arbitrary files from a server.

Source: CVE-2020-7758

답글 남기기 응답 취소