Roundup Directory traversal vulnerability
Moderate severity
GitHub Reviewed
Published
Apr 29, 2022
to the GitHub Advisory Database
•
Updated May 9, 2024
Description
Published by the National Vulnerability Database
Dec 31, 2004
Published to the GitHub Advisory Database
Apr 29, 2022
Reviewed
May 9, 2024
Last updated
May 9, 2024
Directory traversal vulnerability in Roundup 0.6.4 and earlier allows remote attackers to view arbitrary files via
..(dot dot) sequences in an@@command in an HTTP GET request.References