You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Thank you @mgesing for the quick fixes
For information, this vulnerability and the ones reported in #2113 have been found automatically by SonarSource products.
You can try sonarcloud.io for instance, it's free for open-source projects.
Hello
Thanks for maintaining this open-source project
I would like to report a path traversal vulnerability similar to:
In the ImportController.Create method, the
model.TempFileName
user-controlled input is not validated and an attacker can perform a path traversal attack to copy an arbitrary file into a new profil and delete the original file.Eric
The text was updated successfully, but these errors were encountered: