Vigil@nce - Vigil@nce - Apache Commons IO: directory traversal via FileNameUtils.normalize, analyzed on 20/04/2021
June 2021 by Vigil@nce
Vigil@nce - An attacker can traverse directories via FileNameUtils.normalize() of Apache Commons IO, in order to read a file outside the service root path.
Plus d'information sur : https://vigilance.fr/vulnerability/Apache-Commons-IO-directory-traversal-via-FileNameUtils-normalize-35120