CVE-2020-19678

Published: Apr 6, 2023

Modified: Feb 12, 2025

PUBLISHED

Description

Directory Traversal vulnerability found in Pfsense v.2.1.3 and Pfsense Suricata v.1.4.6 pkg v.1.0.1 allows a remote attacker to obtain sensitive information via the file parameter to suricata/suricata_logs_browser.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.2ngon.com/2015/01/lfi-vulnerability-suricata-146-pkg-v101.html

https://github.com/pfsense/pfsense-packages/commit/59ed3438729fd56452f58a0f79f0c288db982ac3

https://pastebin.com/8dj59053

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-19678

Description

Affected Products

References