2019-05-22 14:07:03
mitre
PUBLISHED
Blogifier 2.3 before 2019-05-11 does not properly restrict APIs, as demonstrated by missing checks for .. in a pathname.