CVE-2020-29134

Published March 5th, 2021

View on NVD ↗

CVSS v3

8.6

HIGH

CVSS v2

7.8

HIGH

Affected

PROJECT

Description

The TOTVS Fluig platform allows path traversal through the parameter "file = .. /" encoded in base64. This affects all versions Fluig Lake 1.7.0, Fluig 1.6.5 and Fluig 1.6.4

Ls4ss/CVE-2020-29134

Exploit CVE-2020-29134 - TOTVS Fluig Platform - Path Traversal

GitHub