Lucene search
Digital Security Research GroupEDB-ID:32259HistoryAug 18, 2008 - 12:00 a.m.
Freeway 1.4.1.171 - '/english/account.php?language' Traversal Local File Inclusion
2008-08-1800:00:00
Digital Security Research Group
www.exploit-db.com
16
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/30731/info
Freeway is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these vulnerabilities using directory-traversal strings to view local files in the context of the webserver process. This may aid in further attacks.
Freeway 1.4.1.171 is vulnerable; other versions may also be affected.
http://www.example.com/[installdir]/includes/languages/english/account.php?language=../../../../../../../../../../../../../etc/passwd%00Related
exploitdb
exploitdb
nvd
nvd
CVE-2008-3770
2008-08-22 16:41:00
prion
prion
Directory traversal
2008-08-22 16:41:00
cvelist
cvelist
CVE-2008-3770
2008-08-22 16:00:00
cve
cve
CVE-2008-3770
2008-08-22 16:41:00