exploitDog

GHSA-xx3h-9xgv-2q4v

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.

Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.

Ссылки

EPSS

Процентиль: 91%

0.06398

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2010-3306

ubuntu

почти 15 лет назад

Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.

CVE-2010-3306

nvd

почти 15 лет назад

Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.

CVE-2010-3306

debian

почти 15 лет назад

Directory traversal vulnerability in the modURL function in instance.c ...

EPSS

Процентиль: 91%

0.06398

Низкий

CVE ID

Дефекты

CWE-22