Gnuteca3.8
Path traversal present in Gnuteca v.3.8
[Additional Information] Unauthenticated users can exploit:
- Path Traversal in GNUTeca v.3.8. The parameter "file", located at "file.php?folder=/&file=" is vulnerable to Path Traversal attacks.
[VulnerabilityType Other] Path Traversal
[Vendor of Product] Solis
[Affected Product Code Base] GNUTeca v.3.8
[Reference] https://www.solis.com.br/gnuteca
[Researcher] Bruno de Barros Bulle