Directory Traversal

Overview openmage/magento-lts is a This repository is the home of an unofficial community-driven project. Affected versions of this package are vulnerable to Directory Traversal through the files request parameter in the dataflow import parsers. An attacker with administrative privileges can read...

curl: Denial of Service (DoS) vulnerability in dedotdotify() URL path normalization

Summary A Denial of Service DoS vulnerability exists in the dedotdotify function in lib/urlapi.c that can cause excessive CPU consumption due to On² time complexity when processing URLs with malicious path patterns containing many ../ sequences. Affected Component - Component: libcurl URL API -...

Mongoose Web Server 2.11 Directory Traversal Vulnerability

Exploit for windows platform in category remote exploits ========================================================== Mongoose Web Server 2.11 Directory Traversal Vulnerability ========================================================== Author: nitr0us Alejandro Hernandez H. Software Link:...

Mongoose Web Server 2.11 Directory Traversal

Exploit Title: Mongoose 2.11 Directory Traversal Date: 29 Oct Author: nitr0us Alejandro Hernandez H. Software Link: http://mongoose.googlecode.com/files/mongoose-2.11.exe Version: 2.11 Windows Version Tested on: Windows XP Service Pack 2 Chatsubo inSecurity Dark Labs...