exploitDog

GHSA-pqf9-f88f-jphj

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter.

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter.

Ссылки

EPSS

Процентиль: 76%

0.01005

Низкий

CVE ID

Связанные уязвимости

CVE-2000-0687

nvd

около 25 лет назад

Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack in the catdir parameter.

EPSS

Процентиль: 76%

0.01005

Низкий

CVE ID