CVE-2020-5840
Summary: HashBrown CMS prior to 1.3.2 contains a directory traversal vulnerability in Server/Entity/Resource/Connection.js that allows an attacker to reach a parent directory by supplying a crafted name or ID. Impact (as documented): potential access to parent directories, enabling unauthorized n...