Lucene search

CVE-2023-49089

🗓️ 12 Dec 2023 19:07:15Reported by GoogleType

osv🔗 osv.dev👁 15 Views

Umbraco CMS Path Traversal Vulnerability Patch

Reporter	Title	Published	Views	Family All 7
OSV	Using the directory back payload (“/../”) in a package name allows placement of package in other folders.	13 Dec 202313:24	–	osv
Cvelist	CVE-2023-49089 Umbraco CMS possible path traversal when creating packages from backoffice	12 Dec 202319:02	–	cvelist
NVD	CVE-2023-49089	12 Dec 202319:15	–	nvd
Veracode	Path Traversal	13 Dec 202306:10	–	veracode
Prion	Path traversal	12 Dec 202319:15	–	prion
CVE	CVE-2023-49089	12 Dec 202319:15	–	cve
Github Security Blog	Using the directory back payload (“/../”) in a package name allows placement of package in other folders.	13 Dec 202313:24	–	github

Source	Link
github	www.github.com/umbraco/Umbraco-CMS/security/advisories/GHSA-6324-52pr-h4p5

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Dec 2023 19:15Current

6.5Medium risk

Vulners AI Score6.5

CVSS36.5

EPSS0.00181