Mend Vulnerability Database
What is a CVE vulnerability ID? What is a WS vulnerability ID?New vulnerability? Tell us about it!
We found results for “”
Good to know:
Date: December 18, 2019
Drupal 8 core's file_save_upload() function does not strip the leading and trailing dot ('.') from filenames. Users with the ability to upload files with any extension in conjunction with contributed modules may be able to use this to upload system files such as .htaccess in order to bypass protections afforded by Drupal's default .htaccess file.
Weakness Type (CWE)
Unrestricted Upload of File with Dangerous TypeCWE-434
Upgrade to version drupal/core - 8.7.11,8.8.1
|Attack Vector (AV):||NETWORK|
|Attack Complexity (AC):||LOW|
|Privileges Required (PR):||LOW|
|User Interaction (UI):||NONE|