2 matches found
CVE-2001-0217
The connected Nessus source (PALS Library System WebPALS pals-cgi Multiple Vulnerabilities) confirms a directory traversal flaw in the pals-cgi CGI of the PALS Library System. The vulnerability allows an attacker to read arbitrary files via the .. sequence in the documentName parameter, with the ...
CVE-2001-0217
Directory traversal vulnerability in PALS Library System pals-cgi program allows remote attackers to read arbitrary files via a .. dot dot in the documentName parameter...