Published: 29/08/2018 Updated: 19/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Cybrotech CyBroHttpServer 1.0.3 allows Directory Traversal via a ../ in the URI.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cybrotech cybrohttpserver 1.0.3

# Exploit Title: Cybrotech CyBroHttpServer 103 - Directory Traversal # Date: 2018-08-29 # Exploit Author: Emre ÖVÜNÇ # Vendor Homepage: wwwcybrotechcom/ # Software Link: wwwcybrotechcom/wp-content/uploads/2016/11/CyBroHttpServer-v103zip # Version: v103 # Tested on: Windows # CVE: CVE-2018-16133 # PoC <host&gt ...

Cybrotech CyBroHttpServer version 103 suffers from a directory traversal vulnerability ...

Directory Traversal in CyBroHttpServer v1.0.3 allows an attacker to read sensitive informations.

CyBroHttpServer-v103-Directory-Traversal Directory Traversal in CyBroHttpServer v103 allows an attacker to read sensitive informations CVE-2018-16133 cvemitreorg/cgi-bin/cvenamecgi?name=CVE-2018-16133 PoC To exploit vulnerability, someone could use '[host]/////////' request to get some informations from the target For example: h

CWE-22 https://github.com/EmreOvunc/CyBroHttpServer-v1.0.3-Directory-Traversal https://emreovunc.com/blog/en/CyBroHttpServer-v.1.0.3-Directory-Traversal-3.png https://www.exploit-db.com/exploits/45303/https://nvd.nist.gov https://github.com/EmreOvunc/CyBroHttpServer-v1.0.3-Directory-Traversal https://www.exploit-db.com/exploits/45303/

CVE-2018-16133

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect