Lucene search

Contao Core directory traversal vulnerability

🗓️ 17 May 2022 02:22:42Reported by GitHub Advisory DatabaseType

Contao Core directory traversal vulnerability in versions before 3.2.19 and 3.4.x before 3.4.4

Reporter	Title	Published	Views	Family All 7
Contao	Directory traversal in the back end	12 Feb 201500:00	–	contao
OSV	Contao Core directory traversal vulnerability	17 May 202202:42	–	osv
Friends Of PHP	A directory traversal vulnerability allows back end users to view files outside their document root	12 Feb 201513:44	–	friendsofphp
CVE	CVE-2015-0269	26 May 201717:29	–	cve
Cvelist	CVE-2015-0269	26 May 201717:00	–	cvelist
Prion	Directory traversal	26 May 201717:29	–	prion
NVD	CVE-2015-0269	26 May 201717:29	–	nvd

Vulners

Node

contao coreRange2.0.0–3.2.19

contao coreRange3.4.0–3.4.4

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2015-0269
contao	www.contao.org/en/news/contao-3_2_19.html
contao	www.contao.org/en/news/contao-3_4_4.html
contao	www.contao.org/en/news/directory-traversal-vulnerability-cve-2015-0269.html
github	www.github.com/contao/core/commit/0229e839b4849e402256b972eb62f89f2c29674d
github	www.github.com/FriendsOfPHP/security-advisories/blob/master/contao/core/CVE-2015-0269.yaml
github	www.github.com/advisories/GHSA-4r6g-xhx7-fm36

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 May 2022 02:42Current

6.5Medium risk

Vulners AI Score6.5

CVSS24

CVSS34.3

EPSS0.00155

CWE-22