漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
changedetection.io: Zip Slip vulnerability in the backup restore functionality
Vulnerability Description
changedetection.io is a free open source web page change detection tool. Prior to version 0.54.4, a Zip Slip vulnerability in the backup restore functionality allows arbitrary file overwrite via path traversal in uploaded ZIP archives. This issue has been patched in version 0.54.4.
CVSS Information
N/A
Vulnerability Type
对路径名的限制不恰当(路径遍历)
Vulnerability Title
changedetection.io 路径遍历漏洞
Vulnerability Description
changedetection.io是dgtlmoon个人开发者的一个网站变更检测、监控和通知应用程序。 changedetection.io 0.54.4之前版本存在路径遍历漏洞,该漏洞源于备份恢复功能存在任意文件覆盖漏洞,可能导致任意文件覆盖。
CVSS Information
N/A
Vulnerability Type
N/A