ShokoServer System 漏洞列表

共找到 2 个与 ShokoServer System 相关的漏洞

📅 加载漏洞趋势中...

CVE-2023-43662: ShokoServer System - Local File Inclusion (LFI) POC

日期: 2025-08-01 | 影响软件: ShokoServer System

ShokoServer is a media server which specializes in organizing anime. In affected versions the `/api/Image/WithPath` endpoint is accessible without authentication and is supposed to return default server images. The endpoint accepts the parameter `serverImagePath`, which is not sanitized in any way before being passed to `System.IO.File.OpenRead`, which results in an arbitrary file read.
CVE-2023-43662: ShokoServer System - Local File Inclusion (LFI) POC

日期: 2025-08-01 | 影响软件: ShokoServer System

ShokoServer is a media server which specializes in organizing anime. In affected versions the `/api/Image/WithPath` endpoint is accessible without authentication and is supposed to return default server images. The endpoint accepts the parameter `serverImagePath`, which is not sanitized in any way before being passed to `System.IO.File.OpenRead`, which results in an arbitrary file read.