3 matches found
CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...
UBUNTU-CVE-2014-10073
The createresponse function in server/server.c in Psensor before 1.1.4 allows Directory Traversal because it lacks a check for whether a file is under the webserver directory...
CVE-2014-10073
Psensor is affected by a directory traversal in the create_response function of server/server.c prior to version 1.1.4, allowing access to files under the webserver directory. This stems from a missing check that verifies a requested path is under the webserver root. The vulnerability impacts Pse...