CVE-2004-1548

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in the file server in ActivePost Standard 3.1 allows remote authenticated users to upload arbitrary files via a .. (dot dot) in the filename.

Ссылки

http://aluigi.altervista.org/adv/actp-adv.txt
http://marc.info/?l=bugtraq&m=109597139011373&w=2
http://secunia.com/advisories/12642/
Vendor Advisory
http://securitytracker.com/id?1011406
http://www.securityfocus.com/bid/11244
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/17488
http://aluigi.altervista.org/adv/actp-adv.txt
http://marc.info/?l=bugtraq&m=109597139011373&w=2
http://secunia.com/advisories/12642/
Vendor Advisory
http://securitytracker.com/id?1011406
http://www.securityfocus.com/bid/11244
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/17488

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:onnuri_infotek:activepost_standard:3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.0235

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-h65c-88m9-cp4w

github

почти 4 года назад