Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 19/02/2008 Updated: 29/09/2017

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 645

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N

Directory traversal vulnerability in download.php in Tracking Requirements & Use Cases (TRUC) 0.11.0 allows remote malicious users to read arbitrary files via a .. (dot dot) in the upload_filename parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
truc truc 0.11

### TRUC 0110 (downloadphp) Remote File Disclosure Vulnerability ### switchdlsourceforgenet/sourceforge/truc/truc_0110targz ### POC : ### /downloadphp?upload_filename=config_incphp ### /downloadphp?upload_filename=////////etc/passwd ### Dork : TRUC 0110 :: Â© 2006 by ASDIS : ### I'm TRYAGI ;) -- Tryagcc/cc ...

CWE-22 http://www.securityfocus.com/bid/27839 https://www.exploit-db.com/exploits/5129 https://nvd.nist.gov https://www.exploit-db.com/exploits/5129/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0814

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect