6 matches found
CVE-2019-10717
BlogEngine.NET 3.3.7.0 allows /api/filemanager Directory Traversal via the path parameter...
CVE-2019-10717
BlogEngine.NET 3.3.7.0 allows /api/filemanager Directory Traversal via the path parameter...
CVE-2019-10717
CVE-2019-10717 affects BlogEngine.NET 3.3.7.0 via /api/filemanager?path=, allowing Directory Traversal / Local File Inclusion. The Nuclei template confirms /api/filemanager local file inclusion and describes impact: read sensitive files and potentially broader compromise. Exploitation details in ...
BlogEngine.NET 3.3.63.3.7 - path Directory Traversal
BlogEngine.NET 3.3.63.3.7 - path Directory Traversal Exploit Title: Directory Traversal on BlogEngine.NET Date: 24 Jun 2019 Exploit Author: Aaron Bishop Vendor Homepage: https://blogengine.io/ Version: v3.3.7 Tested on: 3.3.7, 3.3.6 CVE : 2019-10717 1. Description ============== BlogEngine.NET is...
BlogEngine.NET 3.3.6 / 3.3.7 path Directory Traversal
Exploit Title: Directory Traversal on BlogEngine.NET Date: 24 Jun 2019 Exploit Author: Aaron Bishop Vendor Homepage: https://blogengine.io/ Version: v3.3.7 Tested on: 3.3.7, 3.3.6 CVE : 2019-10717 1. Description ============== BlogEngine.NET is vulnerable to a directory traversal. The page...
BlogEngine.NET 3.3.6/3.3.7 - 'path' Directory Traversal
Exploit Title: Directory Traversal on BlogEngine.NET Date: 24 Jun 2019 Exploit Author: Aaron Bishop Vendor Homepage: https://blogengine.io/ Version: v3.3.7 Tested on: 3.3.7, 3.3.6 CVE : 2019-10717 1. Description ============== BlogEngine.NET is vulnerable to a directory traversal. The page...