CVE-2021-29474 log

Severity Medium
Remote Yes
Type Information disclosure
A security issue has been found in HedgeDoc before version 1.8.0. An attacker can read arbitrary .md files from the server's filesystem due to an improper input validation, which results in the ability to perform a relative path traversal.
Group Package Affected Fixed Severity Status Ticket
AVG-1876 hedgedoc 1.7.2-2 1.7.2-3 Medium Fixed