Published: 29/01/2008 Updated: 15/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in RTE_file_browser.asp in Web Wiz NewsPad 1.02 allows remote malicious users to list arbitrary directories, and .txt and .zip files, via a .....\\\ in the sub parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
web wiz newspad 1.02

########################## WwWBugReportir ########################################### # # AmnPardaz Security Research Team # # Title: Web Wiz NewsPad(TM) # Vendor: wwwwebwizguidecom/ # Bug: Directory traversal # Vulnerable Version: 102 # Exploit: Available # Fix Available: No! Fast Solution is available ########################### ...

CWE-22 http://www.bugreport.ir/?/30 http://www.webwizguide.com/webwiznewspad/kb/release_notes.asp http://www.securitytracker.com/id?1019268 http://secunia.com/advisories/28416 http://securityreason.com/securityalert/3588 http://www.securityfocus.com/bid/27419 https://exchange.xforce.ibmcloud.com/vulnerabilities/39863 https://www.exploit-db.com/exploits/4972 http://www.securityfocus.com/archive/1/486869/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/4972/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0479

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect