RedPacket Security

InfoSec News & Tutorials

Vulnerabilities 

Rocket.Chat Path Traversal

admin , , , , , , , , ,
Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by Moe Szyslak on Dec 21

Rocket.Chat has fixed a server-side path traversal vulnerability that may
be abused to write files to attacker-controlled locations:

https://github.com/RocketChat/Rocket.Chat/commit/f5c7d94bffb279d7a2f859773935fb5cf70c81cd

Exploitation of this vulnerability requires uploading attachments with
crafted names and requesting a data download.

No release of Rocket.Chat contains these fixes. Users should consider
cherrypicking…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source

You May Also Like

clifford photography AM 6Utithbo unsplash

Thousands of Cryptocurrency Users Targeted by Tor Network Exit Nodes

admin
CVE prog

CVE-2015-7907

admin
osint

Hackers Attack Online Stores Stealing Credit Card Data, Experts Allege North Korea

admin