Absolute Path Traversal Vulnerability in ShareLaTeX 0.1.3 and Earlier

Absolute Path Traversal Vulnerability in ShareLaTeX 0.1.3 and Earlier

CVE-2015-0933 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

Absolute path traversal vulnerability in ShareLaTeX 0.1.3 and earlier, when the paranoid openin_any setting is omitted, allows remote authenticated users to read arbitrary files via a \include command.

Learn more about our User Device Pen Test.