RedPacket Security

InfoSec News & Tutorials

Vulnerabilities 

Rocket.Chat Path Traversal

admin , , , , , , , , ,
Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by Moe Szyslak on Dec 21

Rocket.Chat has fixed a server-side path traversal vulnerability that may
be abused to write files to attacker-controlled locations:

https://github.com/RocketChat/Rocket.Chat/commit/f5c7d94bffb279d7a2f859773935fb5cf70c81cd

Exploitation of this vulnerability requires uploading attachments with
crafted names and requesting a data download.

No release of Rocket.Chat contains these fixes. Users should consider
cherrypicking…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source

You May Also Like

osint

Backdoor.Win32.Zombam.k / Remote Stack Buffer Overflow

admin
osint

Foreign hackers breached Russian federal agencies, said FSB

admin
network connection 414415 1280

Six New Vulnerabilities Found in DIR-865L Model of D-Link Routers

admin
Available for Amazon Prime