Relative Path Traversal in Flarum using fake OAuth Provider

Reported a low impact Path Traversal where an OAuth Provider could read local files exploiting relative path traversal in Flarum.
  • Posted on: 2021-06-11 14:36
  • Reading Time: 0 min
  • Share on:
    Y Combinator
    Reddit
    Mastodon

References