5 matches found
EUVD-2018-4280
Malware in sbrugna...
CVE-2018-12306
Directory Traversal in File Explorer in ASUSTOR ADM version 3.1.1 allows attackers to view arbitrary files by modifying the "file1" URL parameter, a similar issue to CVE-2018-11344...
Directory traversal
Directory Traversal in File Explorer in ASUSTOR ADM version 3.1.1 allows attackers to view arbitrary files by modifying the "file1" URL parameter, a similar issue to CVE-2018-11344...
CVE-2018-12306
CVE-2018-12306 describes a directory traversal vulnerability in ASUSTOR ADM’s File Explorer (v3.1.1). An attacker can view arbitrary files by altering the URL parameter file1, indicating improper input handling in the file-path logic. The vulnerability is presented as analogous to CVE-2018-11344....
CVE-2018-11344
CVE-2018-11344 concerns ASUSTOR ADM 3.1.0.RFQ3 on AS6202T. A path traversal vulnerability in download.cgi via the file1 parameter allows an attacker to download arbitrary files from the system. Affected component: download.cgi; root cause: improper validation of file paths in file1. Proof of impa...