Arbitrary File Read Vulnerability in Gollum's Precious Module

Arbitrary File Read Vulnerability in Gollum's Precious Module

CVE-2015-7314 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The Precious module in gollum before 4.0.1 allows remote attackers to read arbitrary files by leveraging the lack of a certain temporary-file check.

Learn more about our Web Application Penetration Testing UK.