5 matches found
GeFest Web Home Server远程目录遍历漏洞
BUGTRAQ ID: 38141 Gefest Web Home Server是设计有图形用户界面的简单web服务器。 远程攻击者可以通过向Gefest Web Home Serve提交特制URI请求执行目录遍历攻击,访问Web根目录外的文件。 GZM Web GeFest Web HomeServer 1.0 厂商补丁: GZM Web ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://clearweb.org.ua/gefest/GefestWSwinjre.exe...
GeFest Web HomeServer 1.0 Directory Traversal
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | [email protected] | | |...
CORELAN-10-010 - GeFest Web HomeServer v1.0 Remote Directory Traversal Vulnerability
|------------------------------------------------------------------| | | | / / / / | | / / / / / / / / / / / | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | [email protected] | | |...
Clearweb GeFest Web HomeServer directory traversal
It's possible to access files behind web root...
GeFest Web Home Server 1.0 - Directory Traversal
GeFest Web Home Server 1.0 - Directory Traversal source: https://www.securityfocus.com/bid/38141/info Gefest Web Home Server is prone to a remote directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view...