exploitDog

GHSA-hff4-9w57-p64w

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) ".." (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.

Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) ".." (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.

Ссылки

EPSS

Процентиль: 88%

0.04041

Низкий

CVE ID

Связанные уязвимости

CVE-2005-4202

nvd

около 20 лет назад

Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) "..\" (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.

EPSS

Процентиль: 88%

0.04041

Низкий

CVE ID