Directory traversal

2009-05-0118:30:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

Multiple directory traversal vulnerabilities in geekigeeki.py in GeekiGeeki before 3.0 allow remote attackers to read arbitrary files via directory traversal sequences in a pagename argument in the (1) handle_edit and (2) handle_raw functions.

CPENameOperatorVersion
geekigeekieq2.0

CPE	Name	Operator	Version
	geekigeeki	eq	2.0

References

secunia.com/advisories/33162

www.codewiz.org/wikigit/geekigeeki.git/blobdiff/92e45c3ce9260c69b4201d877c0f2e431024a52e..5f99f96a7a102bb8f2c491dd1e11fe8686c7c0a0:/geekigeeki.py

www.codewiz.org/wikigit/geekigeeki.git?a=commit%3Bh=5f99f96a7a102bb8f2c491dd1e11fe8686c7c0a0

www.osvdb.org/50719

www.securityfocus.com/bid/32831

exchange.xforce.ibmcloud.com/vulnerabilities/47375