Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f (encoded dot dot) in the file parameter in a download action.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
http://www.exploit-db.com/exploits/18070 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2011-12-15T02:00:00Z
Updated: 2024-09-17T00:51:01.758Z
Reserved: 2011-12-14T00:00:00Z
Link: CVE-2011-4831
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2011-12-15T03:57:34.887
Modified: 2012-02-09T05:00:00.000
Link: CVE-2011-4831
Redhat
No data.