CVE-2020-37219
Published: 13 May 2026
Summary
CVE-2020-37219 is a high-severity Path Traversal (CWE-22) vulnerability in Fabrikar (inferred from references). Its CVSS base score is 7.5 (High).
Operationally, ranked at the 48.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Threat & Defense Details
Likely Mitigating ControlsAI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Validates pathnames and filenames to prevent traversal outside intended directories.
NVD Description
Joomla com_fabrik 3.9.11 contains a directory traversal vulnerability that allows unauthenticated attackers to list arbitrary files by manipulating the folder parameter. Attackers can send GET requests to the onAjax_files method with path traversal sequences to enumerate files in system directories…
more
outside the intended web root.
Deeper analysisAI
Automated synthesis unavailable for this CVE.
Details
- CWE(s)