Path Traversal Information Disclosure in Squiz Matrix File Bridge Plugin

Path Traversal Information Disclosure in Squiz Matrix File Bridge Plugin

CVE-2017-14196 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

An issue was discovered in Squiz Matrix from 5.3 through to 5.3.6.1 and 5.4.1.3. An information disclosure caused by a Path Traversal issue in the 'File Bridge' plugin allowed the existence of files outside of the bridged path to be confirmed.

Learn more about our Web Application Penetration Testing UK.