CVE-2021-36233

The function AdminGetFirstFileContentByFilePath in MIK.starlight 7.9.5.24363 allows (by design) an authenticated attacker to read arbitrary files from the filesystem by specifying the file path.
References
Configurations

Configuration 1

cpe:2.3:a:unit4:mik.starlight:7.9.5.24363:*:*:*:*:*:*:*

Information

Published : 2021-08-31 06:15

Updated : 2021-09-08 06:05


NVD link : CVE-2021-36233

Mitre link : CVE-2021-36233

Products Affected
No products.
CWE