CVE-2006-6865

Published: 31/12/2006 Updated: 17/10/2018

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 785

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Directory traversal vulnerability in SAFileUpSamples/util/viewsrc.asp in SoftArtisans FileUp (SAFileUp) 5.0.14 allows remote malicious users to read arbitrary files via a %c0%ae. (Unicode dot dot) in the path parameter, which bypasses the checks for ".." sequences.

Vulnerable Product	Search on Vulmon	Subscribe to Product
softartisans fileup 5.0.14

SoftArtisans FileUp viewsrcasp remote script source disclosure exploit Advisory Name: SoftArtisans FileUp(TM) viewsrcasp remote script source disclosure exploit Tested and Confirmed Vulerable: SoftArtisans SAFileUp(TM) 5014 (Standard) Severity: High Type: Script source disclosure From where: Remote Discovered by: Inge Henriksen (in ...

NVD-CWE-Other http://ingehenriksen.blogspot.com/2006/12/softartisans-fileup-viewsrcasp-remote.html http://www.securityfocus.com/bid/21821 http://securityreason.com/securityalert/2094 http://www.vupen.com/english/advisories/2007/0014 https://www.exploit-db.com/exploits/3046 http://www.securityfocus.com/archive/1/455549/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/3046/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-6865

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect