- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19973
- Проверка EDB
-
- Пройдено
- Автор
- SLASH
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- null
- Дата публикации
- 2000-03-22
Fastraq Mailtraq 1.1.4 - Multiple Path Vulnerabilities
Код:
source: https://www.securityfocus.com/bid/1278/info
A remote user may browse any known directory on a host running Fastraq Mailtraq 1.1.4 by making a URL request that includes the '../' string.
In addition, requesting a URL appended with "../" and an unusually long character string will return an error message disclosing the full path of the Mailtraq installation directory.
Directory traversal vulnerability:
http: //target/../../knowndirectory/
Path disclosure vulnerability:
http: //target/../<very long character string>- Источник
- www.exploit-db.com
