First published: Wed May 15 2024(Updated: )
A Local File Inclusion (LFI) vulnerability has been discovered in the gregwar/rst library, potentially exposing sensitive files on the server to unauthorized users. The issue arises from inadequate input validation, allowing an attacker to manipulate file paths and include arbitrary files.
Affected Software | Affected Version | How to fix |
---|---|---|
composer/gregwar/rst | <1.0.3 | 1.0.3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.