Directory traversal vulnerability in AspUpload 2.1, in certain configurations, allows remote malicious users to upload and read arbitrary files, and list arbitrary directories, via a .. (dot dot) in the Filename parameter in (1) UploadScript11.asp or (2) DirectoryListing.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
persits aspupload 2.1 |