CVE-2023-35843

CVE-2023-35843

NocoDB through 0.106.0 (or 0.109.1) has a path traversal vulnerability that allows an unauthenticated attacker to access arbitrary files on the server by manipulating the path parameter of the /download route. This vulnerability could allow an attacker to access sensitive files and data on the server, including configuration files, source code, and other sensitive information.

Source: CVE-2023-35843

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다