Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure path traversal in filesystem and filesystem-nio2 storage backends in org.gaul S3Proxy
Vulnerability Description
org.gaul S3Proxy implements the S3 API and proxies requests. Users of the filesystem and filesystem-nio2 storage backends could unintentionally expose local files to users. This issue has been addressed in version 2.6.0. Users are advised to upgrade. There are no known workarounds for this vulnerability.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
S3Proxy 路径遍历漏洞
Vulnerability Description
S3Proxy是Andrew Gaul个人开发者的一个 S3 API。 S3Proxy 2.6.0之前版本存在路径遍历漏洞,该漏洞源于filesystem和filesystem-nio2存储后端可能无意中将本地文件暴露给用户。
CVSS Information
N/A
Vulnerability Type
N/A