Описание
Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated global administrators to read arbitrary files via a .. (dot dot) in the file parameter to (1) logfile_view.wdm and (2) configfile_view.wdm.
Ссылки
- Patch
- Patch
- PatchVendor Advisory
- Patch
- Patch
- Patch
- PatchVendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:alt-n:webadmin:3.2.3:*:*:*:*:*:*:*
cpe:2.3:a:alt-n:webadmin:3.2.4:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01175
Низкий
4 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Multiple directory traversal vulnerabilities in Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated global administrators to read arbitrary files via a .. (dot dot) in the file parameter to (1) logfile_view.wdm and (2) configfile_view.wdm.
EPSS
Процентиль: 78%
0.01175
Низкий
4 Medium
CVSS2
Дефекты
NVD-CWE-Other