4 matches found
Local File Inclusion (LFI)
gregwar/rst is vulnerable to Local File Inclusion LFI. The vulnerability is due to inadequate input validation, allowing an attacker to manipulate file paths to read arbitrary files...
gregwar/rst Local File Inclusion Vulnerability
A Local File Inclusion LFI vulnerability has been discovered in the gregwar/rst library, potentially exposing sensitive files on the server to unauthorized users. The issue arises from inadequate input validation, allowing an attacker to manipulate file paths and include arbitrary files...
GHSA-2GQ2-M628-33XP gregwar/rst Local File Inclusion Vulnerability
A Local File Inclusion LFI vulnerability has been discovered in the gregwar/rst library, potentially exposing sensitive files on the server to unauthorized users. The issue arises from inadequate input validation, allowing an attacker to manipulate file paths and include arbitrary files...
Paragon Initiative Enterprises: [Airship CMS] Local File Inclusion - RST Parser
Airship uses the very useful RST Parser from Gregwar. However, the parser has the RST directive include built-in why it isn't a separate directive per the spec, I don't know. However, as a result, LFI is possible in Airship. I realize this isn't directly Paragonie's code, but since Airship uses...