Skip to main content

This site requires you to update your browser. Your browsing experience maybe affected by not having the most up to date version.

SS-2014-013: Upload fileexists vulnerability

If using the `UploadField` (either on the front-end or the back-end) the `fileexists` method may expose the existence of files outside of the designated upload folder. Using parent path selectors it was possible to determine the existence of files anywhere the web server had read access.

The issue has been resolved by triggering a HTTP error if a filename including a relative path is specified instead of a pathless filename.

Severity:
Low (?)
Identifier:
SS-2014-013
Versions Affected:
3.1.4
Versions Fixed:
3.1.5
Release Date:
2014-05-07

If using the `UploadField` (either on the front-end or the back-end) the `fileexists` method may expose the existence of files outside of the designated upload folder. Using parent path selectors it was possible to determine the existence of files anywhere the web server had read access.

The issue has been resolved by triggering a HTTP error if a filename including a relative path is specified instead of a pathless filename.