Directory traversal

2007-08-1523:17:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.022 Low

EPSS

Percentile

89.5%

JSON

Directory traversal vulnerability in go/_files in SOTEeSKLEP before 4.0 allows remote attackers to read arbitrary files via a … (dot dot) in the file parameter.

CPENameOperatorVersion
soteesklepeq3.1
soteesklepeq2.5
soteesklepeq2.0
soteesklepeq3.0
soteesklepeq3.5

Name	Operator	Version
soteesklep	eq	3.1
soteesklep	eq	2.5
soteesklep	eq	2.0
soteesklep	eq	3.0
soteesklep	eq	3.5

References

secunia.com/advisories/26472

www.securityfocus.com/archive/1/476268/100/0/threaded

www.securityfocus.com/archive/1/476445/100/0/threaded

www.securityfocus.com/bid/25286

exchange.xforce.ibmcloud.com/vulnerabilities/35973

www.exploit-db.com/exploits/4282