CVE-2020-25540: ThinkAdmin directory traversal vulnerability

(updated )

ThinkAdmin v6 is affected by a directory traversal vulnerability. An unauthorized attacker can read arbitrarily file on a remote server via GET request encode parameter.

References

Code Behaviors & Features

Detect and mitigate CVE-2020-25540 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →