PT-2018-15468 · Lei Feng · Lei Feng Tv Cms
Published
2018-12-30
·
Updated
2019-01-10
·
CVE-2018-20604
CVSS v3.1
4.9
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Lei Feng TV CMS (aka LFCMS) version 3.8.6
Description
The issue allows Directory Traversal via crafted use of ..* in Template/edit/path URIs. For example, the admin.php?s=/Template/edit/path/web......*..*1.txt.html URI can be used to read the 1.txt file.
Recommendations
For Lei Feng TV CMS (aka LFCMS) version 3.8.6, as a temporary workaround, consider restricting access to the Template/edit/path URI to minimize the risk of exploitation. Avoid using the ..* sequence in the Template/edit/path URI until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Lei Feng Tv Cms