Multiple directory traversal vulnerabilities in EasySite 2.3 allow remote attackers to read arbitrary files or list directories via a .. (dot dot) in the (1) module or (2) action parameter in (a) www/index.php; the (3) module, (4) ss_module, or (5) ss_action parameter in (b) modules/Module/index.php or (c) modules/Themes/index.php; or the (6) module parameter in (d) inc/vmenu.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2008-09-19T23:00:00
Updated: 2024-08-07T10:08:34.925Z
Reserved: 2008-09-19T00:00:00
Link: CVE-2008-4155
Vulnrichment
No data.
NVD
Status : Modified
Published: 2008-09-19T23:00:00.953
Modified: 2017-09-29T01:32:01.540
Link: CVE-2008-4155
Redhat
No data.