Directory traversal vulnerability in the embedded HTTP server in SCI Photo Chat Server 3.4.9 and previous versions allows remote malicious users to read arbitrary files via a "..\" (dot dot backslash) or "../" (dot dot forward slash) in the GET command.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
simm-comm sci photo chat |