LionWiki before 3.2.12 allows an unauthenticated user to read files as the web server user via crafted string in the index.php f1 variable, aka Local File Inclusion. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-11-16T15:17:53
Updated: 2024-08-04T16:11:35.991Z
Reserved: 2020-10-16T00:00:00
Link: CVE-2020-27191
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-11-16T16:15:14.837
Modified: 2020-11-30T21:28:22.513
Link: CVE-2020-27191
Redhat
No data.