header-logo
Suggest Exploit
vendor:
Project Jug
by:
5.5
CVSS
MEDIUM
Directory Traversal
22
CWE
Product Name: Project Jug
Affected Version From: 1.0.0.0
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Directory Traversal Vulnerability in Project Jug

The vulnerability allows an attacker to read files outside the webroot directory by exploiting insufficient input sanitization in Project Jug. By traversing directories, an attacker can access sensitive information that can be used for launching further attacks.

Mitigation:

To mitigate this vulnerability, it is recommended to properly sanitize user-supplied input and implement access controls to prevent directory traversal attacks. Regularly updating Project Jug to the latest version is also advised.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/44569/info

Project Jug is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to read files outside the webroot directory. Information harvested may aid in launching further attacks.

Project Jug 1.0.0.0 is vulnerable; other versions may also be affected. 

http://www.example.com/.../.../.../.../.../.../.../.../.../.../windows/win.ini

Navigation

Suggest Exploit

Services By CQR