The sqlpage folder can be read by HTTP client requests #89

olivierauverlot · 2023-09-18T07:34:12Z

With the browser, we can download the files in the sqlpage folder. For example, it's possible to read the sqlpage.json configuration file. It's a security problem. The sqlpage folder must be keep hidden.

It's possible to set rewrite rules on the proxy side to block the download. But, I think that it will be cool to filter url in sqlpage server.

The text was updated successfully, but these errors were encountered:

lovasoa · 2023-09-18T11:36:16Z

Thank you very much for the report. The check was removed during a refactoring and we missed it because we didn't have a test for it. I'll release a new version today.

lovasoa · 2023-09-18T14:00:36Z

Just released v0.11.1

lovasoa · 2023-09-18T18:18:57Z

I published an advisory and requested a CVE, where you will be credited.

GHSA-v5wf-jg37-r9m5

lovasoa closed this as completed in 3f73964 Sep 18, 2023

lovasoa added a commit that referenced this issue Sep 18, 2023

add a test for #89

d08490d

lovasoa added a commit that referenced this issue Nov 5, 2023

fix #89

50ad903

lovasoa added a commit that referenced this issue Nov 5, 2023

add a test for #89

45e3547

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

The sqlpage folder can be read by HTTP client requests #89

The sqlpage folder can be read by HTTP client requests #89

olivierauverlot commented Sep 18, 2023

lovasoa commented Sep 18, 2023

lovasoa commented Sep 18, 2023

lovasoa commented Sep 18, 2023

The sqlpage folder can be read by HTTP client requests #89

The sqlpage folder can be read by HTTP client requests #89

Comments

olivierauverlot commented Sep 18, 2023

lovasoa commented Sep 18, 2023

lovasoa commented Sep 18, 2023

lovasoa commented Sep 18, 2023