SaveWebPortal 3.4 - Multiple Directory Traversal Vulnerabilities

ID SSV:79838
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


SaveWebPortal is prone to multiple directory traversal vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input.

Exploitation of this vulnerability could lead to a loss of confidentiality and integrity. Information obtained may aid in further attacks against the underlying system; other attacks are also possible.

An attacker can also execute arbitrary local PHP files through exploitation of this vulnerability. The impact of this will depend on the PHP files available.[script].php%00[script].php%00