DansGuardian Webmin Module 0.x - 'edit.cgi' Directory Traversal

EDB-ID:

23535

CVE:



Author:

FIST

Type:

webapps


Platform:

CGI

Date:

2004-01-10


source: https://www.securityfocus.com/bid/9394/info

A problem has been identified in the handling of input by scripts packaged with the DansGuardian Webmin Module. Because of this, it is possible for a remote to gain access to potentially sensitive information.

https://www.example.com:10000/dansguardian/edit.cgi?file=[FILE]