Skip to content

Information exposure in the upload directory

Low
matks published GHSA-997j-f42g-x57c Jul 2, 2020

Package

No package listed

Affected versions

> 1.5.0.0

Patched versions

1.7.6.6

Description

Impact

Information exposure in the upload directory

Patches

The problem is fixed in the 1.7.6.6

Workarounds

Add an empty index.php file in the upload directory.

References

Information Exposure Through Directory Listing (CWE-548)

Thanks to Jomar

Severity

Low

CVE ID

CVE-2020-15081

Weaknesses

No CWEs