Relative Path Traversal in Flarum using fake OAuth Provider
June 11, 2021 ◦ 1 min ◦
Reported a low impact Path Traversal where an OAuth Provider could read local files exploiting relative path traversal in Flarum.
References: