2 matches found
CVE-2001-0211
Directory traversal vulnerability in WebSPIRS 3.1 allows remote attackers to read arbitrary files via a .. dot dot attack on the sp.nextform parameter...
CVE-2001-0211
CVE-2001-0211 describes a directory traversal vulnerability in WebSPIRS 3.1 where the CGI parameter sp.nextform can be manipulated with a .. sequence to read arbitrary files. Multiple sources (NVD and CVE listings) confirm the affected product as WebSPIRS 3.1 and the impact as information disclos...