header-logo
Suggest Exploit
vendor:
Easy File Sharing Web Server
by:
Unknown
7.5
CVSS
HIGH
Directory Traversal, Information Disclosure
22
CWE
Product Name: Easy File Sharing Web Server
Affected Version From: Easy File Sharing Web Server 4.5
Affected Version To: Unknown
Patch Exists: No
Related CWE:
CPE: a:xunlei:easy_file_sharing_web_server:4.5
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Directory Traversal and Information Disclosure Vulnerabilities in Easy File Sharing Web Server

The Easy File Sharing Web Server is prone to directory-traversal and multiple information-disclosure vulnerabilities. These vulnerabilities can be exploited by remote attackers to upload files to arbitrary locations and access potentially sensitive information, which may aid in further attacks.

Mitigation:

No mitigation provided
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/26771/info

Easy File Sharing Web Server is prone to a directory-traversal and multiple information-disclosure vulnerabilities.

Successfully exploiting these issues allows remote attackers to upload files to arbitrary locations and to access potentially sensitive information, which may aid in further attacks.

Easy File Sharing Web Server 4.5 is vulnerable to these issues; other versions may also be affected. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/30856.zip