Published: 23/11/2004 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 515

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in OWLS 1.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the (1) file parameter in index.php, (2) editfile in glossary.php, or (3) editfile in newmultiplechoice.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
fools workshop owls workshop 1.0

source: wwwsecurityfocuscom/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter Upon successful exploitation of these issues, an attacker may be able to gain access to sensitive system files, potentiall ...

source: wwwsecurityfocuscom/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter Upon successful exploitation of these issues, an attacker may be able to gain access to sensitive system files, potenti ...

source: wwwsecurityfocuscom/bid/9689/info Owl's Workshop is reported prone to multiple remote file-disclosure vulnerabilities because the application fails to validate user-supplied input passed via a URI parameter Upon successful exploitation of these issues, an attacker may be able to gain access to sensitive system files, potential ...

NVD-CWE-Other http://www.securityfocus.com/bid/9689 http://www.zone-h.org/en/advisories/read/id=3973/http://marc.info/?l=bugtraq&m=107712123305706&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15249 https://nvd.nist.gov https://www.exploit-db.com/exploits/23722/

CVE-2004-0302

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect