october/october is vulnerable to arbitrary file deletion. The vulnerability exists as the returned value of getFilePath
does not validate the real path of the file, allowing an authenticated user with the cms.manage_assets
permission to delete files outside the assets directory.
CPE | Name | Operator | Version |
---|---|---|---|
october/october | le | 1.0.465 | |
october/october | le | 1.0.465 |
packetstormsecurity.com/files/158730/October-CMS-Build-465-XSS-File-Read-File-Deletion-CSV-Injection.html
seclists.org/fulldisclosure/2020/Aug/2
github.com/advisories/GHSA-jv6v-fvvx-4932
github.com/octobercms/october/commit/2b8939cc8b5b6fe81e093fe2c9f883ada4e3c8cc
github.com/octobercms/october/security/advisories/GHSA-jv6v-fvvx-4932