Directory traversal

2009-10-0519:30:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.8%

JSON

Directory traversal vulnerability in Xerver HTTP Server 4.32 allows remote attackers to read arbitrary files via a full pathname with a drive letter in the currentPath parameter in a chooseDirectory action.

CPENameOperatorVersion
xervereq4.32

CPE	Name	Operator	Version
	xerver	eq	4.32

References

www.exploit-db.com/exploits/9718