3 matches found
CVE-2023-25802 Roxy-WI has Path Traversal vulnerability
Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.6.0 don't correctly neutralize dir/../filename sequences, such as /etc/nginx/../passwd, allowing an actor to gain information about a server. Version 6.3.6.0 has a patch for this issue...
CVE-2023-25802
CVE-2023-25802 affects Roxy-WI, a web interface for managing HAProxy, Nginx, Apache, and Keepalived. The issue is a path traversal vulnerability in versions prior to 6.3.6.0, where the application does not correctly neutralize dir/../filename sequences (for example /etc/nginx/../passwd), enabling...
CVE-2023-25802 Roxy-WI has Path Traversal vulnerability
Roxy-WI is a Web interface for managing Haproxy, Nginx, Apache, and Keepalived servers. Versions prior to 6.3.6.0 don't correctly neutralize dir/../filename sequences, such as /etc/nginx/../passwd, allowing an actor to gain information about a server. Version 6.3.6.0 has a patch for this issue...