Lucene search

Veracode Vulnerability DatabaseVERACODE:39855

HistoryMar 19, 2023 - 5:43 a.m.

Path Traversal

2023-03-1905:43:16

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

path traversal

flarum

validatecustomless.php

vulnerability

sensitive server files

6.8 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

29.5%

JSON

flarum/core and flarum/framework is vulnerable to Path Traversal. The vulnerability exists because the whenSettingsSaving function in ValidateCustomLess.php does not properly restrict the custom LESS setting, which allows an attacker to access files outside the expected directory and read sensitive server files.

CPENameOperatorVersion
flarum/corelev1.6.3
flarum/frameworklev1.6.3
flarum/corelev1.6.3
flarum/frameworklev1.6.3

Name	Operator	Version
flarum/core	le	v1.6.3
flarum/framework	le	v1.6.3
flarum/core	le	v1.6.3
flarum/framework	le	v1.6.3

References

github.com/flarum/flarum-core/commit/f0d3a75af073aaacf0780ed3ada38f03d2258bc3

github.com/flarum/framework/commit/1761660c98ea5a3e9665fb8e6041d1f2ee62a444

github.com/flarum/framework/security/advisories/GHSA-vhm8-wwrf-3gcw