Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbSlipyEDB-ID:20623
HistoryFeb 12, 2001 - 12:00 a.m.

carey internets services commerce.cgi 2.0.1 - Directory Traversal

2001-02-1200:00:00
slipy
www.exploit-db.com
34

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/2361/info

It is possible for a remote user to gain read access to directories and files outside the root directory of Carey Internet Services Commerce.cgi. Requesting a specially crafted URL composed of '/../%00' along with the known filename or directory will disclose the requested resource. 

http://target/cgi/commerce.cgipage=../../../../etc/hosts%00filename.html

Related

cvelist 1
nessus 1
nvd 1
cve 1
cvelist
cvelist
CVE-2001-0210
2001-03-09 05:00:00
nessus
nessus
Commerce.CGI Shopping Cart commerce.cgi page Parameter Traversal Arbitrary File Access
2001-02-13 00:00:00
nvd
nvd
CVE-2001-0210
2001-06-02 04:00:00
cve
cve
CVE-2001-0210
2001-06-02 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:20623
cvelist1nessus1nvd1cve1