Lichess: Path Traversal Vulnerability in Lila Project

June 11, 2025 invoker category_news

Security Update News

Update Information

Title Lichess: Path Traversal Vulnerability in Lila Project
Update ID H1:3181066
Type hackerone
Published 2025-06-06T11:16:21
Last Updated 2025-06-09T11:30:57

Security Impact

CVSS Score 0.0
Severity NONE
Attack Vector

Affected CVEs

Update Details

A path traversal vulnerability was discovered in the Lila project that allowed an attacker to access arbitrary files on the server by manipulating user-supplied input to traverse outside the intended directory structure.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.