Multiple directory traversal vulnerabilities in js/get_js.php in SERWeb 2.0.0 dev1 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) mod and (2) js parameters.
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Link | Tags |
---|---|
http://www.securityfocus.com/bid/26747 | vdb entry exploit |
http://osvdb.org/39220 | vdb entry |
https://www.exploit-db.com/exploits/4696 | exploit |
https://exchange.xforce.ibmcloud.com/vulnerabilities/38907 | vdb entry |