Copyparty is a portable file server. Versions prior to 1.8.2 are subject to a path traversal vulnerability detected in the `.cpr` subfolder. The Path Traversal attack technique allows an attacker access to files, directories, and commands that reside outside the web document root directory. This issue has been addressed in commit `043e3c7d` which has been included in release 1.8.2. Users are advised to upgrade. There are no known workarounds for this vulnerability.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-07-14T19:55:22.779Z
Updated: 2023-07-14T19:55:22.779Z
Reserved: 2023-07-06T13:01:36.998Z
Link: CVE-2023-37474
JSON object: View
NVD Information
Status : Modified
Published: 2023-07-14T20:15:09.083
Modified: 2023-07-31T19:15:17.570
Link: CVE-2023-37474
JSON object: View
Redhat Information
No data.
CWE