CVE-2019-12276

GrandNode 4.40 is affected by a Local File Inclusion (path traversal) in Controllers/LetsEncryptController.cs. Remote, unauthenticated attackers could retrieve arbitrary files on the web server via letsEncrypt/Index?fileName= requests. The issue is mitigated by a patch released on 2019-05-30 in G...