Description
Vibe-Trading before 0.1.10 contains a path traversal vulnerability that allows attackers to write files outside the intended memory root directory by supplying a malicious memory_type value containing path traversal sequences through the remember tool. Attackers can manipulate the memory_type parameter in the persistent memory store to cause the application to write arbitrary Markdown files to unintended locations on the filesystem.
Problem types
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Product status
Any version before 0.1.10
Credits
Chia Min Jun Lennon
References
github.com/HKUDS/Vibe-Trading/pull/257
github.com/HKUDS/Vibe-Trading/releases/tag/v0.1.10 (Release Notes)
github.com/HKUDS/Vibe-Trading/pull/257 (Fix PR)
github.com/HKUDS/Vibe-Trading/pull/257 (Fix Commit)
www.vulncheck.com/...th-traversal-via-persistent-memory-type