EUVD-2007-4352

Malware in sbrugna...

SOTEeSKLEP <= 3.5RC9 (file) Remote File Disclosure Vulnerability

No description provided by source. SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUESTfile $file=$REQUEST'file';...

Directory traversal

Directory traversal vulnerability in go/files in SOTEeSKLEP before 4.0 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2007-4369

Directory traversal vulnerability in go/files in SOTEeSKLEP before 4.0 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2007-4369

Directory traversal vulnerability in go/files in SOTEeSKLEP before 4.0 allows remote attackers to read arbitrary files via a .. dot dot in the file parameter...

CVE-2007-4369

SOTEeSKLEP (before 4.0) contains a directory traversal flaw in the go/_files component. The vulnerability allows remote attackers to read arbitrary files by supplying a \.. (dot dot) in the file parameter. This originates from inadequate validation of path traversal in the affected module, leadin...

soteesklep-disclose.txt

SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUEST"file" $file=$REQUEST'file'; ... $filepath="$DOCUMENTROOT/themes/$config-lang/htmlfiles/$file"; if...

SOTEeSKLEP &lt;= 3.5RC9 (file) Remote File Disclosure Vulnerability

No description provided by source. SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUEST"file" $file=$REQUEST'file';...

SOTEeSKLEP 3.5RC9 - &#039;file&#039; Remote File Disclosure

SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUEST"file" $file=$REQUEST'file'; ... $filepath="$DOCUMENTROOT/themes/$config-lang/htmlfiles/$file"; if...

SOTEeSKLEP <= 3.5RC9 (file) Remote File Disclosure Vulnerability

Exploit for unknown platform in category web applications ================================================================ SOTEeSKLEP lang/htmlfiles/$file"; if fileexists$filepath $fd=fopen$filepath,"r"; $data=fread$fd,filesize$filepath; print $data; fclose$fd; ... Dork: inurl:"/go/files/?file="...

SOTEeSKLEP 3.5RC9 - file Remote File Disclosure

SOTEeSKLEP 3.5RC9 - file Remote File Disclosure SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUEST"file" $file=$REQUEST'file';...

SOTEeSKLEP Remote File Disclosure Vulnerability

SOTEeSKLEP Remote File Disclosure Vulnerability Script : SOTEeSKLEP Versions: 3.1RC8, 3.5RC1, 3.5RC4, 3.5RC9, and i think other. Site : http://www.sote.pl Bug: ... if ! empty$REQUEST"file" $file=$REQUEST'file'; ... $filepath="$DOCUMENTROOT/themes/$config-lang/htmlfiles/$file"; if...