CVE-2018-7171

2018-03-30T17:29:01
ID CVE-2018-7171
Type cve
Reporter NVD
Modified 2018-04-20T09:16:01

Description

Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.