header-logo
Suggest Exploit
vendor:
Mereo
by:
5.5
CVSS
MEDIUM
Directory Traversal
22
CWE
Product Name: Mereo
Affected Version From: 1.9.2001
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Directory Traversal Vulnerability in Mereo

Mereo is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files and directories within the context of the webserver. Information harvested may aid in launching further attacks.

Mitigation:

To mitigate this vulnerability, it is recommended to apply the latest patches or updates provided by the vendor. Additionally, input validation and sanitization techniques should be implemented to prevent directory traversal attacks.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/40053/info

Mereo is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to view arbitrary local files and directories within the context of the webserver. Information harvested may aid in launching further attacks.

Mereo 1.9.1 is vulnerable; other versions may also be affected. 

http://www.example.com/%80../%80../%80../%80../%80../%80../%80../%80../

Navigation

Suggest Exploit

Services By CQR