6.5 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
26.5%
SonicJS up to v0.7.0 allows attackers to execute an authenticated path traversal when an attacker injects special characters into the filename of a backup CMS.
github.com/lane711/sonicjs/pull/183
youtu.be/6ZuwA9CkQLg