Description

A security vulnerability exists in SearchBlox that allows an attacker to read arbitrary local files from the affected server.

Remediation

Upgrade to the latest version of SearchBlox

References

CVE-2020-35580

Related Vulnerabilities

WordPress Plugin N-Media Website Contact Form with File Upload Local File Inclusion (1.5)

WordPress Plugin Abstract Submission Local File Inclusion (0.6)

WordPress Plugin Simple Ads Manager Local File Inclusion (2.10.0.130)

Typo3 Restler 1.7.0 Local File Disclosure

WordPress Plugin BackWPup Multiple Local File Include Vulnerabilities (1.5.2)

Severity

High

Classification

CVE-2020-35580 CWE-22 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Tags

File Inclusion