6 matches found
CVE-2014-5258
CVE-2014-5258 affects webEdition CMS (pre-6.3.9.0 Beta) where showTempFile.php is vulnerable to directory traversal via the file parameter. The flaw allows remote authenticated users to read arbitrary server files by crafting ../ sequences. Public sources (HTB HTB23227 advisory and CVE entries) c...
Path Traversal in webEdition
Advisory ID: HTB23227 Product: webEdition Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical details Vendor Notification: August 6, 2014 Vendor Patch: Septembe...
webEdition 6.3.8.0 (SVN-Revision: 6985) - Path Traversal
No description provided by source. Advisory ID: HTB23227 Product: webEdition Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical details Vendor Notification:...
webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
webEdition 6.3.8.0 SVN-Revision: 6985 - Directory Traversal Advisory ID: HTB23227 Product: webEdition Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical detail...
webEdition 6.3.8.0 (SVN-Revision: 6985) - Directory Traversal
Advisory ID: HTB23227 Product: webEdition Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical details Vendor Notification: August 6, 2014 Vendor Patch: Septembe...
webEdition 6.3.8.0 Path Traversal Vulnerability
webEdition version 6.3.8.0 suffers from a path traversal vulnerability. Vendor: webEdition e.V. Vulnerable Versions: 6.3.8.0 SVN-Revision: 6985 and probably prior Tested Version: 6.3.8.0 SVN-Revision: 6985 Advisory Publication: August 6, 2014 without technical details Vendor Notification: August ...