vendor:
html2ps
by:
epiphant
7.5
CVSS
HIGH
Arbitrary File Disclosure
22
CWE
Product Name: html2ps
Affected Version From: 1.0 beta5
Affected Version To: 1.0 beta5
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
html2ps <= 1.0 beta5 arbitrary file disclosure
The “include file” SSI directive of html2ps does not check for directory traversal, allowing an attacker to include and disclose any file in the directory tree. The vulnerability requires that “ssi” in the @html2ps block in the html2psrc file is set to 1, which is the default.
Mitigation:
Ensure that the “ssi” in the @html2ps block in the html2psrc file is set to 0.