CVE-2005-3086

Опубликовано: 27 сент. 2005

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter.

Ссылки

http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0650.html
Exploit
Vendor Advisory
http://secunia.com/advisories/16929
Vendor Advisory
http://www.securityfocus.com/bid/14943
http://archives.neohapsis.com/archives/fulldisclosure/2005-09/0650.html
Exploit
Vendor Advisory
http://secunia.com/advisories/16929
Vendor Advisory
http://www.securityfocus.com/bid/14943

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:contentserv:contentserv:3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00256

Низкий

6.4 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-85p6-3vc2-6v3w

github

почти 4 года назад