High severity7.5NVD Advisory· Published Feb 17, 2021· Updated Jun 17, 2026
CVE-2021-27367
CVE-2021-27367
Description
Controller/Backend/FileEditController.php and Controller/Backend/FilemanagerController.php in Bolt before 4.1.13 allow Directory Traversal.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
bolt/corePackagist | < 4.1.13 | 4.1.13 |
Affected products
2- Bolt/Boltdescription
Patches
Vulnerability mechanics
References
5- github.com/bolt/core/pull/2371nvdPatchThird Party AdvisoryWEB
- github.com/advisories/GHSA-q88g-qx42-xfrhghsaADVISORY
- github.com/bolt/core/releases/tag/4.1.13nvdRelease NotesThird Party AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2021-27367ghsaADVISORY
- packagist.org/packages/bolt/coreghsaWEB
News mentions
0No linked articles in our index yet.