BlogEngine.NET theme Cookie directory traversal vulnerability
- Date Published:2019-06-19
- Last Updated:2019-06-20
- Version Affected: 3.3.7
BlogEngine.NET is a free, open source blogging system.An attacker can use this vulnerability to access locations outside the restricted directory.
At present, the manufacturer does not provide the repair plan, please pay attention to the manufacturer's home page: