Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61860
HistoryMar 20, 2014 - 12:00 a.m.

SeedDMS 'out.LogManagement.php'目录遍历漏洞

2014-03-2000:00:00
Root
www.seebug.org
9

0.021 Low

EPSS

Percentile

87.8%

JSON

Bugtraq ID:66256
CVE ID:CVE-2014-2279

SeedDMS是一个强大易用的文档管理系统。

SeedDMS /out/out.LogManagement.php脚本不正确过滤’logname’参数数据,允许攻击者利用漏洞提交目录遍历序列,以WEB权限查看系统文件内容。
0
SeedDMS 4.3.3
SeedDMS 4.3.4已经修复该漏洞,建议用户下载更新:
https://sourceforge.net/projects/seeddms/files/seeddms-4.3.4/

Related

prion 2
cve 2
packetstorm 1
securityvulns 2
zdt 1
prion
prion
Directory traversal
2014-10-17 23:55:00
Unrestricted file upload
2014-10-17 23:55:00
cve
cve
CVE-2014-2279
2014-10-17 23:55:00
CVE-2014-2278
2014-10-17 23:55:00
packetstorm
packetstorm
SeedDMS XSS / Traversal / Shell Upload
2014-03-14 00:00:00
securityvulns
securityvulns
Multiple Vulnerabilities in SeedDMS < = 4.3.3
2014-05-05 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2014-05-05 00:00:00
zdt
zdt
SeedDMS XSS / Traversal / Shell Upload Vulnerabilities
2014-03-15 00:00:00

0.021 Low

EPSS

Percentile

87.8%

JSON
Related for SSV:61860
prion2cve2packetstorm1securityvulns2zdt1