2 matches found
Sandstorm Security Bypass Vulnerability
Sandstorm is a personal cloud platform. The platform features file storage, application management, task and project management, and more. A security vulnerability exists in versions prior to Sandstorm build 0.203, which stems from the program failing to adequately validate email addresses. A...
CVE-2017-6200
Sandstorm before build 0.203 allows remote attackers to read any specified file under /etc or /run via the sandbox backup function. The root cause is that the findFilesToZip function doesn't filter Line Feed \n characters in a directory name...