exploitDog

GHSA-5q7g-mjcf-xgcf

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.

Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.

Ссылки

EPSS

Процентиль: 57%

0.00346

Низкий

CVE ID

Связанные уязвимости

CVE-2006-3488

nvd

больше 19 лет назад

Absolute path traversal vulnerability in administrador.asp in VirtuaStore 2.0 allows remote attackers to possibly read arbitrary directories or files via an absolute path with Windows drive letter in the Pasta parameter when link=util, acao=ftp, and acaba=sim.

EPSS

Процентиль: 57%

0.00346

Низкий

CVE ID