Lucene search
K

8 matches found

NVD
NVD
added 2013/09/09 5:55 p.m.32 views

CVE-2013-4900

Directory traversal vulnerability in DeWeS web server 0.4.2 and possibly earlier, as used in Twilight CMS, allows remote attackers to read arbitrary files via a ..%5c dot dot encoded backslash in a GET request...

5CVSS6.7AI score0.04111EPSS
Exploits5References4
Cvelist
Cvelist
added 2013/09/09 5:0 p.m.36 views

CVE-2013-4900

Directory traversal vulnerability in DeWeS web server 0.4.2 and possibly earlier, as used in Twilight CMS, allows remote attackers to read arbitrary files via a ..%5c dot dot encoded backslash in a GET request...

6.6AI score0.04111EPSS
Exploits5References4
CVE
CVE
added 2013/09/09 5:0 p.m.58 views

CVE-2013-4900

CVE-2013-4900 describes a directory traversal in DeWeS Web Server (0.4.2 and possibly earlier), used with Twilight CMS, allowing remote attackers to read arbitrary files via a dot-dot-encoded backslash (e.g., ..%5c) in a GET request. Connected sources confirm the vulnerable component and the expl...

5CVSS6.7AI score0.04111EPSS
Exploits5References4Affected Software1
0day.today
0day.today
added 2013/08/22 12:0 a.m.61 views

DeWeS 0.4.2 - Directory Traversal Vulnerability

Exploit for windows platform in category web applications High-Tech Bridge Security Research Lab discovered path traversal vulnerability in DeWeS web server that is supplied in package with Twilight CMS Windows version, which can be exploited to read arbitrary files on vulnerable system. 1 Path...

5CVSS6.5AI score0.04111EPSS
Exploits5
exploitpack
exploitpack
added 2013/08/22 12:0 a.m.86 views

DeWeS 0.4.2 - Directory Traversal

DeWeS 0.4.2 - Directory Traversal Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Travers...

5CVSS0.1AI score0.04111EPSS
Exploits5
Exploit DB
Exploit DB
added 2013/08/22 12:0 a.m.53 views

DeWeS 0.4.2 - Directory Traversal

Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Traversal CWE-22 CVE Reference:...

5CVSS6.9AI score0.04111EPSS
Exploits5
Packet Storm
Packet Storm
added 2013/08/21 12:0 a.m.49 views

DeWeS 0.4.2 Path Traversal

Advisory ID: HTB23167 Product: DeWeS web server Twilight CMS Vendor: Strata Technologies LLC Vulnerable Versions: 0.4.2 and probably prior Tested Version: 0.4.2 Vendor Notification: July 24, 2013 Public Disclosure: August 21, 2013 Vulnerability Type: Path Traversal CWE-22 CVE Reference:...

5CVSS0.04111EPSS
Exploits5
Circl
Circl
added 2013/08/21 12:0 a.m.15 views

CVE-2013-4900

creationtimestamp| type| source ---|---|--- 2013-08-21 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38737...

5CVSS6.8AI score0.04111EPSS
Exploits5References1
Rows per page
Query Builder