devika api/get-browser-snapshot can get any file in the filesystem

api/get-browser-snapshot can get any file in the filesystem

Open Polygons1 opened this issue 1 year ago • 3 comments

the endpoint api/get-browser-snapshot can send back any file in the system and this isn't really good...

Mar 30 '24 19:03 Polygons1

even Synk complains that there are 3 endpoints with the Path Traversal vulnerability ( api/get-browser-snapshot, api/download-project, api/download-project-pdf )

Mar 30 '24 19:03 Polygons1

Yup this is quite a big vulnerability, if the contents of the files are also visible that would be really bad. Looking forward to a fix for this ^

Mar 31 '24 10:03 ItsNeil17

This app is intended to be functional on a local machine and not hosted on the Internet, but this should nevertheless be handled correctly. Will fix the LFI, thanks for raising the issue! 🙌

Mar 31 '24 21:03 mufeedvh

devika devika copied to clipboard

api/get-browser-snapshot can get any file in the filesystem

devika
devika copied to clipboard