← back
CVE-2018-20470

CVE-2018-20470

EPSS 46.0%
An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerability exists in the web reports module. This allows an outside attacker to view contents of sensitive files.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/153330/Sahi-Pro-7.x-8.x-Directory-Traversal.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47005unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/153330/Sahi-Pro-7.x-8.x-Directory-Traversal.htmlhttps://barriersec.com/2019/06/cve-2018-20470-sahi-pro/