The filesystem storage backend in Radicale prior to 1.1 on Windows allows remote malicious users to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
radicale radicale |