WSSecurity.pl in WebStore allows remote malicious users to bypass authentication by providing the program with a filename that exists, which is made easier by (1) inserting a null character or (2) .. (dot dot).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cgicentral webstore 400 4.14 |
||
cgicentral webstore 400cs 4.14 |