CVE-2020-29134

HIGH

TOTVS Fluig - Path Traversal via Base64-Encoded File Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2020-29134. PoCs published by Lucas Souza, Ls4ss.

AI-analyzed exploit summary This script exploits a path traversal vulnerability in Fluig 1.7.0, allowing unauthorized access to sensitive files such as domain.xml, passwd, and desktop.ini. It uses wfuzz to enumerate paths and curl to retrieve file contents, demonstrating the vulnerability effectively.

Description

The TOTVS Fluig platform allows path traversal through the parameter "file = .. /" encoded in base64. This affects all versions Fluig Lake 1.7.0, Fluig 1.6.5 and Fluig 1.6.4

Exploits (4)

exploitdb WORKING POC
by Lucas Souza · bashwebappsmultiple
https://www.exploit-db.com/exploits/49622

This script exploits a path traversal vulnerability in Fluig 1.7.0, allowing unauthorized access to sensitive files such as domain.xml, passwd, and desktop.ini. It uses wfuzz to enumerate paths and curl to retrieve file contents, demonstrating the vulnerability effectively.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Fluig 1.7.0
No auth needed
Prerequisites: Target URL · wfuzz installed · curl installed
devstral-2 · analyzed Feb 18, 2026 Full analysis →
nomisec WORKING POC 3 stars
by Ls4ss · poc
https://github.com/Ls4ss/CVE-2020-29134

This repository contains a functional exploit script for CVE-2020-29134, a path traversal vulnerability in TOTVS Fluig Platform. The script automates the exploitation process by generating base64-encoded payloads to read sensitive files like domain.xml, which may contain database credentials and LDAP configurations.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: TOTVS Fluig Platform (versions <= 1.7.0, 1.6.5, 1.6.4)
No auth needed
Prerequisites: Network access to the vulnerable Fluig instance · Bash environment for script execution
devstral-2 · analyzed Feb 19, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/lucxssouza/cve-2020-29134

This repository contains a functional exploit script for CVE-2020-29134, a path traversal vulnerability in TOTVS Fluig Platform. The script automates the exploitation process, allowing attackers to read sensitive files like domain.xml, which contains database credentials and LDAP configurations.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: TOTVS Fluig Platform (versions <= Fluig Lake 1.7.0, Fluig 1.6.5, Fluig 1.6.4)
No auth needed
Prerequisites: access to the target Fluig instance · base64 encoding/decoding capabilities
devstral-2 · analyzed Feb 23, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/lsass-exe/cve-2020-29134

This repository contains a functional exploit script for CVE-2020-29134, a path traversal vulnerability in TOTVS Fluig Platform. The script automates the exploitation process by generating base64-encoded payloads to read sensitive files like domain.xml, /etc/passwd, and other system files.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: TOTVS Fluig Platform (versions <= 1.7.0, 1.6.5, 1.6.4)
No auth needed
Prerequisites: access to the target Fluig instance · curl and wfuzz installed for automated exploitation
devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/lucxssouza/CVE-2020-29134
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://www.exploit-db.com/exploits/49622
Exploit, Third Party Advisory x_refsource_misc
https://github.com/lucxssouza/CVE-2020-29134/blob/main/README.md

Scores

CVSS v3 8.6
EPSS 0.1502
EPSS Percentile 96.3%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Details

CWE
CWE-22
Status published
Products (3)
totvs/fluig 1.6.4
totvs/fluig 1.6.5
totvs/fluig 1.7.0
Published Mar 05, 2021
Tracked Since Feb 18, 2026