QuickFront 1.0 - File Disclosure

EDB-ID:

22476

CVE:

N/A




Platform:

Windows

Date:

2003-04-09


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux , the course required to become an Offensive Security Certified Professional (OSCP)

GET CERTIFIED

source: https://www.securityfocus.com/bid/7308/info

A vulnerability has been reported for QuickFront that will result in the disclosure of sensitive system resources to remote attackers.

QuickFront does not properly sanitize user-supplied input. Specifically, directory traversal sequences such as '../' to HTTP requests are not removed.

http://<target>/../../../../../boot.ini