- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 24723
- Проверка EDB
-
- Пройдено
- Автор
- GEMMA HUGHES
- Тип уязвимости
- WEBAPPS
- Платформа
- CGI
- CVE
- cve-2004-1102
- Дата публикации
- 2004-11-03
TIPS MailPost 5.1.1 - Remote File Enumeration
Код:
source: https://www.securityfocus.com/bid/11599/info
TIPS MailPost is affected by a remote file enumeration vulnerability. This issue is due to a failure to properly sanitize user requests.
An attacker may leverage this issue to gain knowledge of the existence of files outside the Web root directory. Information disclosed in this way may facilitate further attacks.
http://www.example.com/scripts/mailpost.exe/..%255c..%255c..%255cwinnt/system.ini?*nosend*=&[email protected]- Источник
- www.exploit-db.com
