Directory traversal vulnerability in editor.php in Network Weathermap 0.97c and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the mapname parameter in a show_config action.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-05T20:00:00
Updated: 2024-08-06T16:22:00.932Z
Reserved: 2013-06-03T00:00:00
Link: CVE-2013-3739
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-06-05T20:55:05.457
Modified: 2014-06-06T16:08:39.020
Link: CVE-2013-3739
Redhat
No data.