Description
Directory traversal vulnerability in Contao before 3.2.19, and 3.4.x before 3.4.4 allows remote authenticated "back end" users to view files outside their file mounts or the document root via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress Plugin Catch Gallery Security Bypass (1.6.8)
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Cross-Site Request Forgery (2.0.1.6)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-2271)
Atlassian Jira CVE-2019-20410 Vulnerability (CVE-2019-20410)
Apache HTTP Server CVE-2013-2249 Vulnerability (CVE-2013-2249)