AI Score
Confidence
Low
EPSS
Percentile
77.4%
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-internal directory.
marc.info/?l=full-disclosure&m=108872788123695&w=2
www.idefense.com/application/poi/display?id=113
exchange.xforce.ibmcloud.com/vulnerabilities/16589