exploitDog

GHSA-2hxf-gmcq-wh7p

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields.

Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields.

Ссылки

EPSS

Процентиль: 72%

0.0073

Низкий

CVE ID

Связанные уязвимости

CVE-2000-0811

nvd

почти 25 лет назад

Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the username or bidfile form fields.

EPSS

Процентиль: 72%

0.0073

Низкий

CVE ID