Vulnerabilities

CVE-2019-19372

by Fred · 28/11/2019

** DISPUTED ** A downloadFile.php download_file path traversal vulnerability in rConfig through 3.9.3 allows attackers to list files in arbitrary folders and potentially download files. NOTE: the discoverer later reported that there was not a "fully working exploit."

Date published : 2019-11-28

https://github.com/danielelkabes/Vulnerability-Reports/blob/master/rConfig%203.9.3%20-%20Path%20Traversal%20vulnerability.pdf

Related

Tags: Cybersecurity Alert