Affected versions of
hostr are vulnerable to directory traversal which allows attackers to read files outside the current directory by sending
../ in the url path for GET requests.
Upgrade to version 2.3.6 or later.
Have content suggestions? Send them to [email protected]
publishedAdvisory publishedApr 14th, 2017
reportedInitial report by Liang GongDec 12th, 2016