Description
gather-messages.sh in Ampache 3.4.1 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filelist temporary file.
Remediation
References
Related Vulnerabilities
Envoy Proxy Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2019-18836)
Moodle Credentials Management Errors Vulnerability (CVE-2009-4304)
MySQL CVE-2015-0409 Vulnerability (CVE-2015-0409)
WordPress Plugin YITH Maintenance Mode Multiple Cross-Site Scripting Vulnerabilities (1.3.8)