Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-xvv9-5j67-3rpq: zola Path Traversal vulnerability

An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the “zola serve” command, allows directory traversal. The handle_request function, used by the server to process HTTP requests, does not account for sequences of special path control characters (../) in the URL when serving a file, which allows one to escape the webroot of the server and read arbitrary files from the filesystem.

ghsa
Open in Source
#vulnerability#web#git

Skip to content

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
  • Pricing
  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2023-40274

zola Path Traversal vulnerability

Moderate severity GitHub Reviewed Published Aug 14, 2023 to the GitHub Advisory Database • Updated Aug 14, 2023

Package

cargo zola (Rust)

Affected versions

>= 0.13.0, <= 0.17.2

Description

An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the “zola serve” command, allows directory traversal. The handle_request function, used by the server to process HTTP requests, does not account for sequences of special path control characters (…/) in the URL when serving a file, which allows one to escape the webroot of the server and read arbitrary files from the filesystem.

References

  • https://nvd.nist.gov/vuln/detail/CVE-2023-40274
  • getzola/zola#2257
  • getzola/zola#2258

Published to the GitHub Advisory Database

Aug 14, 2023

Last updated

Aug 14, 2023

Related news

CVE-2023-40274: LFI in zola serve · Issue #2257 · getzola/zola

An issue was discovered in zola 0.13.0 through 0.17.2. The custom implementation of a web server, available via the "zola serve" command, allows directory traversal. The handle_request function, used by the server to process HTTP requests, does not account for sequences of special path control characters (../) in the URL when serving a file, which allows one to escape the webroot of the server and read arbitrary files from the filesystem.

ghsa: Latest News

GHSA-8fh4-942r-jf2g: LibreNMS has a Stored XSS ('Cross-site Scripting') in librenms/includes/html/pages/device/services.inc.php
ghsa