Backdrop core - Moderately critical - Access bypass - BACKDROP-SA-CORE-2023-005
File downloads do not sufficiently sanitize file paths in certain situations. This may result in people gaining access to private files to which they should not have access.
Some sites may require configuration changes following this security release. Review the release notes if you have issues accessing private files after updating.
- All Backdrop sites running on Windows web servers are vulnerable.
- Backdrop sites on Linux web servers are vulnerable only with certain file directory structures, or if a vulnerable contributed or custom file access module is installed.
- Backdrop Core 1.24.x versions prior to 1.24.2
- Backdrop Core 1.23.x versions prior to 1.23.4
Backdrop versions 1.22 and prior do not receive security coverage.