9.3 High
AI Score
Confidence
High
0.159 Low
EPSS
Percentile
96.0%
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
marc.info/?l=bugtraq&m=109095196526490&w=2
secunia.com/advisories/12173
securitytracker.com/id?1010788
www.osvdb.org/8265
www.osvdb.org/8266
www.securityfocus.com/bid/10812
exchange.xforce.ibmcloud.com/vulnerabilities/16817