Lucene search
GoogleOSV:GHSA-9CHX-2VQW-8VQ5HistoryFeb 01, 2022 - 12:01 a.m.
Path Traversal in the Logs plugin for Craft CMS
2022-02-0100:01:00
Google
osv.dev
17
0.013 Low
EPSS
Percentile
85.6%
The Logs plugin before 3.0.4 for Craft CMS allows remote attackers to read arbitrary files via input to actionStream in Controller.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ether/logs | eq | 3.0.2 | |
| ether/logs | eq | 3.0.3 | |
| ether/logs | eq | 3.0.1 | |
| ether/logs | eq | 3.0.0 |
Related
nvd
nvd
CVE-2022-23409
2022-01-31 08:15:07
github
github
Path Traversal in the Logs plugin for Craft CMS
2022-02-01 00:01:00
zdt
zdt
Craft CMS Logs Plugin 3.0.3 - Path Traversal (Authenticated) Vulnerability
2024-06-02 00:00:00
Ethercreative Logs 3.0.3 Path Traversal Vulnerability
2022-01-25 00:00:00
osv
osv
CVE-2022-23409
2022-01-31 08:15:07
packetstorm
packetstorm
Ethercreative Logs 3.0.3 Path Traversal
2022-01-25 00:00:00
cvelist
cvelist
CVE-2022-23409
2022-01-31 07:04:50
cve
cve
CVE-2022-23409
2022-01-31 08:15:07
prion
prion
Design/Logic Flaw
2022-01-31 08:15:00
exploitdb
exploitdb
Craft CMS Logs Plugin 3.0.3 - Path Traversal (Authenticated)
2024-06-01 00:00:00