Unrated severityNVD Advisory· Published Aug 4, 2022· Updated Aug 3, 2024
Path Traversal in plankanban/planka
CVE-2022-2653
Description
With this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file in the system.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: unspecified
Patches
Vulnerability mechanics
References
2- github.com/plankanban/planka/commit/ac1df5201dfdaf68d37f7e1b272bc137870d7418mitrex_refsource_MISC
- huntr.dev/bounties/5dff7cf9-8bb2-4f67-a02d-b94db5009d70mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.