Path Traversal Vulnerability in ZNC Web Skins

Path Traversal Vulnerability in ZNC Web Skins

CVE-2018-14056 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

ZNC before 1.7.1-rc1 is prone to a path traversal flaw via ../ in a web skin name to access files outside of the intended skins directories.

Learn more about our Web App Pen Testing.