2 matches found
CVE-2004-2061
RiSearch shows a vulnerability in the show.pl CGI script that allows an attacker to use the remote host as an open proxy and to read arbitrary local files by passing a url parameter with http://, ftp://, or file://. Affected software/versions include RiSearch 1.0.01 and RiSearch Pro 3.2.06. The u...
CVE-2004-2061
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a 1 http://, 2 ftp://, or 3 file:// URL...