Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote malicious users to (1) create arbitrary directories or files via a .. (dot dot) in the folder name in the new folder functionality or (2) list arbitrary files via a crafted request to Campaign/CampaignListener.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
unica affinium campaign 7.2.1.0.55 |