CVE-2020-5811: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
(updated )
An authenticated path traversal vulnerability exists during package installation in Umbraco CMS, which could result in arbitrary files being written outside of the site home and expected paths when installing an Umbraco package.
References
Detect and mitigate CVE-2020-5811 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →