7 matches found
WebFileSys 2.31.0 - Directory Path Traversal
Exploit Title: WebFileSys 2.31.0 - Directory Path Traversal in relPath Parameter Date: Nov 25, 2024 Exploit Author: Korn Chaisuwan, Charanin Thongudom, Pongtorn Angsuchotmetee Vendor Homepage: http://www.webfilesys.de/webfilesys-home/index.html Software Link:...
WebFileSys 2.31.0 Directory Traversal Vulnerability
An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...
CVE-2024-53586
An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...
CVE-2024-53586
creationtimestamp| type| source ---|---|--- 2025-02-06 21:41:39+00:00| seen| https://infosec.exchange/users/cve/statuses/113959115028131851 2025-02-06 22:16:42+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhk4gfr6ib24 2025-02-06 22:49:12+00:00| seen|...
CVE-2024-53586
An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...
CVE-2024-53586
CVE-2024-53586 : WebFileSys 2.31.0 is affected by a directory-traversal in the relPath parameter. A crafted HTTP request (e.g., using ../../.. payloads) can manipulate file paths and gain unauthorized access to sensitive files outside the intended directory. Exploit details are demonstrated in Ex...
WebFileSys 2.31.0 Directory Traversal
An issue in the relPath parameter of WebFileSys version 2.31.0 allows attackers to perform directory traversal via a crafted HTTP request. By injecting traversal payloads into the parameter, attackers can manipulate file paths and gain unauthorized access to sensitive files, potentially exposing...