NeoAnd/evolution-api
1
0
Fork 0
mirror of https://github.com/EvolutionAPI/evolution-api.git synced 2025-12-25 14:47:45 -06:00
Code Issues Actions Packages Projects Releases Wiki Activity

fix: address Path Traversal vulnerability in /assets endpoint by implementing security checks

Browse Source
This commit is contained in:
Davidson Gomes
2025-09-17 14:25:36 -03:00
parent 7ba878742e
commit b514fab30e
2 changed files with 22 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
CHANGELOG.md
View File

@@ -1,5 +1,9 @@
# 2.3.3 (develop)
### Security
* **CRITICAL**: Fixed Path Traversal vulnerability in /assets endpoint that allowed unauthenticated local file read
### Testing
* Baileys Updates: v7.0.0-rc.3 ([Link](https://github.com/WhiskeySockets/Baileys/releases/tag/v7.0.0-rc.3))