VYPR

starlight

by MIK

CVEs (1)

  • CVE-2021-36233MedAug 31, 2021
    risk 0.42cvss 6.5epss 0.01

    The function AdminGetFirstFileContentByFilePath in MIK.starlight 7.9.5.24363 allows (by design) an authenticated attacker to read arbitrary files from the filesystem by specifying the file path.