Directory traversal vulnerability in html_web_store.cgi and web_store.cgi CGI programs in eXtropia WebStore allows remote attackers to read arbitrary files via a .. (dot dot) attack on the page parameter.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/138495 | |
http://www.securityfocus.com/bid/1774 | Exploit Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/5347 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2000-12-11 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2000-1005
Mitre link : CVE-2000-1005
CVE.ORG link : CVE-2000-1005
JSON object : View
Products Affected
extropia
- extropia_webstore
CWE