CVE-2020-27385

Name of the Vulnerable Software and Affected Versions FlexDotnetCMS versions prior to 1.5.11

Description The issue allows an authenticated remote attacker to bypass access controls and read and write to existing files outside the web root via directory traversal by entering a .. (dot dot) path in the input field of the "FileEditor" at the "/Admin/Views/FileEditor/" endpoint. In versions prior to 1.5.8, it is also possible to access files by specifying the full path.

Recommendations For versions prior to 1.5.11, update to version 1.5.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the FileEditor feature until a patch is available. Avoid using the FileEditor to access files outside the web root until the issue is resolved.