CVE-2023-29200: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

April 25, 2023 (updated May 4, 2023)

Contao is an open source content management system. Prior to versions 4.9.40, 4.13.21, and 5.1.4, logged in users can list arbitrary system files in the file manager by manipulating the Ajax request. However, it is not possible to read the contents of these files. Users should update to Contao 4.9.40, 4.13.21 or 5.1.4 to receive a patch. There are no known workarounds.

References

contao.org/en/security-advisories/directory-traversal-in-the-file-manager
github.com/contao/contao/commit/6f3e705f4ff23f4419563d09d8485793569f31df
github.com/contao/contao/security/advisories/GHSA-fp7q-xhhw-6rj3
nvd.nist.gov/vuln/detail/CVE-2023-29200

Detect and mitigate CVE-2023-29200 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →