3 matches found
CVE-2002-0196
GetRelativePath in ACD Incorporated CwpAPI 1.1 only verifies if the server root is somewhere within the path, which could allow remote attackers to read or write files outside of the web root, in other directories whose path includes the web root...
CVE-2002-0196
The CVE-2002-0196 entry concerns ACD Incorporated CwpAPI 1.1. The vulnerability lies in GetRelativePath, which only checks if the server root is somewhere within the path rather than strictly preventing access beyond the web root. As a result, remote attackers could read or write files outside th...
CVE-2002-0196
GetRelativePath in ACD Incorporated CwpAPI 1.1 only verifies if the server root is somewhere within the path, which could allow remote attackers to read or write files outside of the web root, in other directories whose path includes the web root...