QuickFront 1.0 - File Disclosure

EDB-ID:

22476

CVE:

N/A


Platform:

Windows

Published:

2003-04-09

source: https://www.securityfocus.com/bid/7308/info

A vulnerability has been reported for QuickFront that will result in the disclosure of sensitive system resources to remote attackers.

QuickFront does not properly sanitize user-supplied input. Specifically, directory traversal sequences such as '../' to HTTP requests are not removed.

http://<target>/../../../../../boot.ini