4 matches found
CVE-2021-43800
Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...
CVE-2021-43800
creationtimestamp| type| source ---|---|--- 2021-12-06 22:20:53+00:00| seen| https://t.me/cibsecurity/33406...
CVE-2021-43800
Wiki.js is a wiki app built on Node.js. Prior to version 2.5.254, directory traversal outside of Wiki.js context is possible when a storage module with local asset cache fetching is enabled on a Windows host. A malicious user can potentially read any file on the file system by crafting a special...
CVE-2021-43800
CVE-2021-43800 affects Wiki.js (Node.js) prior to version 2.5.254. Affected condition: on Windows, when a storage module with local asset caching (e.g., Local File System or Git) is enabled and no web application firewall strips malicious URLs. The vulnerability allows directory traversal outside...