2 matches found
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal via the download function due to improper input validation when processing image references during task exports. . An attacker can access files outside the intended directory structure by creating tasks with path...
Fedora 26 : php-horde-nag (2017-041ee90a8b)
nag 4.2.17 - jan SECURITY: Fix unauthorized access to task exports. - jan Fix regression when exporting single tags to iCalendar CATEGORIES. - jan Officially support PHP 7. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system...