Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbG00db0yEDB-ID:23727
HistoryFeb 18, 2004 - 12:00 a.m.

Fool's Workshop Owl's Workshop 1.0 - 'resultsignore.php' Arbitrary File Access

2004-02-1800:00:00
G00db0y
www.exploit-db.com
18

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/9689/info
     
Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter.
     
Upon successful exploitation of these issues, an attacker may be able to gain access to sensitive system files, potentially facilitating further attacks.

http://www.example.org/owls/multiplechoice/resultsignore.php?filename=/etc/passwd

Related

nvd 1
exploitdb 2
cvelist 1
cve 1
openvas 1
nvd
nvd
CVE-2004-0303
2004-11-23 05:00:00
exploitdb
exploitdb
Fool's Workshop Owl's Workshop 1.0 - 'readings/index.php' Arbitrary File Access
2004-02-18 00:00:00
Fool's Workshop Owl's Workshop 1.0 - '/glossaries/index.php?File' Arbitrary File Access
2004-02-18 00:00:00
cvelist
cvelist
CVE-2004-0303
2004-03-18 05:00:00
cve
cve
CVE-2004-0303
2004-11-23 05:00:00
openvas
openvas
File Disclosure in OWL's Workshop
2005-11-03 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:23727
nvd1exploitdb2cvelist1cve1openvas1