header-logo
Suggest Exploit
vendor:
EPIServer
by:
Not provided
7.5
CVSS
HIGH
Directory Traversal, Information Disclosure, Denial of Service
20, 200, 400
CWE
Product Name: EPIServer
Affected Version From: Not provided
Affected Version To: Not provided
Patch Exists: Not provided
Related CWE: Not provided
CPE: Not provided
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Not provided
Not provided

Multiple vulnerabilities in EPIServer

Multiple vulnerabilities were reported in EPIServer that include directory traversal, information disclosure, and denial of service. These issue result from insufficient sanitization of user-supplied input.

Mitigation:

Input validation and sanitization should be implemented to prevent malicious user input from being processed.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9223/info

Multiple vulnerabilities were reported in EPIServer that include directory traversal, information disclosure, and denial of service. These issue result from insufficient sanitization of user-supplied input.

Specific version information was not provided in the report. All versions are assumed to be vulnerable until further information is made public.

These issues are currently undergoing further analysis.

http://www.example.com/templates/Page.aspx?id=20691
http://www.example.com/news.asp?id=7661
http://www.example.com/system/linkurl.asp?root=../../../
http://www.example.com/templates/CommonPage____19461.asp

Navigation

Suggest Exploit

Services By CQR