3 matches found
CVE-2020-36559
creationtimestamp| type| source ---|---|--- 2022-12-28 00:12:12+00:00| seen| https://t.me/cibsecurity/55457...
CVE-2020-36559 Path Traversal in aahframe.work
Due to improper sanitization of user input, HTTPEngine.Handle allows for directory traversal, allowing an attacker to read files outside of the target directory that the server has permission to read...
CVE-2020-36559
CVE-2020-36559 describes a path-traversal vulnerability in the Go web framework aah (HTTPEngine.Handle). The root cause is improper sanitization of user input, allowing an attacker to read files outside the target directory that the server has permission to read. The vulnerability is documented a...