💕 Like what you read? Consider supporting my work for just $5 a month on GitHub Sponsors. You can also buy me a pizza 🍕 or a cup of coffee ☕

eval.blog

Relative Path Traversal in Flarum using fake OAuth Provider

Reported a low impact Path Traversal where an OAuth Provider could read local files exploiting relative path traversal in Flarum.

References: