Описание
Directory traversal vulnerability in FolderManager/FolderManager.aspx in Hosting Controller 7c allows remote authenticated users to read and modify arbitrary files, and list arbitrary directories via ..\ (dot dot backslash) sequences in the BrowsePath parameter.
Ссылки
- Exploit
- ExploitVendor Advisory
- Exploit
- Exploit
- ExploitVendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:hosting_controller:hosting_controller:7c:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00645
Низкий
6.3 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in FolderManager/FolderManager.aspx in Hosting Controller 7c allows remote authenticated users to read and modify arbitrary files, and list arbitrary directories via ..\ (dot dot backslash) sequences in the BrowsePath parameter.
EPSS
Процентиль: 70%
0.00645
Низкий
6.3 Medium
CVSS2
Дефекты
NVD-CWE-Other