2 matches found
CVE-2020-36142
BloofoxCMS 0.5.2.1 allows Directory traversal vulnerability by inserting '../' payloads within the 'fileurl' parameter...
CVE-2020-36142
Summary: CVE-2020-36142 affects BloofoxCMS 0.5.2.1, allowing directory traversal by injecting '../' payloads into the fileurl parameter. The vulnerability is documented across multiple sources (NVD, CNVD/CNNVD, OSV, PRION) with the BloofoxCMS description explicitly noting directory traversal via ...