0.044 Low
EPSS
Percentile
92.4%
luracast/restler are vulnerable to information disclosure attacks. The getsource.php file in the examples allows a malicious user to read any file on the server.
getsource.php
extensions.typo3.org/extension/download/restler/1.7.1/zip/
extensions.typo3.org/extension/restler/
github.com/Luracast/Restler/blob/3.0.0/public/examples/resources/getsource.php#L8
github.com/Luracast/Restler/pull/588