header-logo
Suggest Exploit
vendor:
Corda Highwire
by:
Unknown
5.5
CVSS
MEDIUM
Path Disclosure
200
CWE
Product Name: Corda Highwire
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Corda Highwire Path Disclosure Vulnerability

Corda Highwire is prone to a path disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to obtain sensitive information that may lead to further attacks.

Mitigation:

Ensure that user-supplied input is properly sanitized before being used in a file or resource-access operation.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/61152/info

Corda Highwire is prone to a path disclosure vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to obtain sensitive information that may lead to further attacks. 

http://www.example.com/highwire.ashx?url=../../