exploitDog

GHSA-jghw-mw88-pq53

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter.

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter.

Ссылки

EPSS

Процентиль: 72%

0.00721

Низкий

CVE ID

Связанные уязвимости

CVE-2000-0686

nvd

около 25 лет назад

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the fromfile parameter.

EPSS

Процентиль: 72%

0.00721

Низкий

CVE ID