Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1 matches found

seebug.org
seebug.orgadded 2008/10/25 12:0 a.m.45 views

Allaire Forums GetFile.cfm远程读取任意文件漏洞

BugCVE: CVE-1999-0800 BUGTRAQ: 229 Allaire Forums 是Allaire出品的一个论坛,运行在Coldfusion环境下。Allaire Forums 2.0.4版及其以前版本的一个文件存在安全问题。可以被远程入侵者用来获取服务器上的任意文件。 文件“GetFile.cfm”通常在Web应用程序的根目录下,由于这一行代码的问题: CFCONTENT TYPE= FT/FST FILE= FilePath 可以在指定绝对路径的情况下获取服务器上的任意文件,只要发出如下请求:...

5CVSS6.7AI score0.06958EPSS
Exploits2
Rows per page
Query Builder