[GHSA-p58x-7733-vp9m] n8n Directory Traversal vulnerability #2978

MarkLee131 · 2023-11-22T18:02:40Z

Updates

References

Comments
Add patch commit for v0.216.1: n8n-io/n8n@40b9784 and n8n-io/n8n@fb07d77.

The prs are n8n-io/n8n#5523 and n8n-io/n8n#5522.

As release note for v0.216.1 https://github.com/n8n-io/n8n/releases/tag/n8n%400.216.1 mentioned: "core: Do not allow arbitrary path traversal in BinaryDataManager (#5523) (40b9784)
core: Do not allow arbitrary path traversal in the credential-translation endpoint (#5522) (fb07d77)".

advisory-database · 2023-11-27T21:40:56Z

Hi @MarkLee131! Thank you so much for contributing to the GitHub Advisory Database. This database is free, open, and accessible to all, and it's people like you who make it great. Thanks for choosing to help others. We hope you send in more contributions in the future!

Improve GHSA-p58x-7733-vp9m

f693716

github-actions bot changed the base branch from main to MarkLee131/advisory-improvement-2978 November 22, 2023 18:03

advisory-database bot merged commit e512200 into MarkLee131/advisory-improvement-2978 Nov 27, 2023
2 checks passed

advisory-database bot deleted the MarkLee131-GHSA-p58x-7733-vp9m branch November 27, 2023 21:40

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[GHSA-p58x-7733-vp9m] n8n Directory Traversal vulnerability #2978

[GHSA-p58x-7733-vp9m] n8n Directory Traversal vulnerability #2978

MarkLee131 commented Nov 22, 2023

advisory-database bot commented Nov 27, 2023

[GHSA-p58x-7733-vp9m] n8n Directory Traversal vulnerability #2978

[GHSA-p58x-7733-vp9m] n8n Directory Traversal vulnerability #2978

Conversation

MarkLee131 commented Nov 22, 2023

advisory-database bot commented Nov 27, 2023