header-logo
Suggest Exploit
vendor:
Walla TeleSite
by:
7.5
CVSS
HIGH
Input Validation
20
CWE
Product Name: Walla TeleSite
Affected Version From: 3
Affected Version To: 3
Patch Exists: NO
Related CWE:
CPE: a:walla_telesite:walla_telesite:3.0
Metasploit:
Other Scripts:
Platforms Tested:

Walla TeleSite Input Validation Vulnerabilities

Walla TeleSite is prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input. The vulnerabilities include information and path disclosure, file enumeration, SQL injection, and cross-site scripting attacks within the context of the victim's Web browser and the affected computer. Other attacks are also possible.

Mitigation:

To mitigate these vulnerabilities, it is recommended to implement proper input validation and sanitization techniques. Additionally, keeping the software up to date with the latest security patches and conducting regular security audits can help prevent exploitation.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/15419/info

Walla TeleSite is prone to multiple input validation vulnerabilities. These are due to a lack of proper sanitization of user-supplied input.

Walla TeleSite is prone to information and path disclosure, file enumeration, SQL injection, and cross-site scripting attacks within the context of the victim's Web browser and the affected computer.

Other attacks are also possible.

Walla Telesite version 3.0 is affected; earlier versions are also affected. 

http://www.example.com/ts.exe?tsurl=0.1.0.0

Navigation

Suggest Exploit

Services By CQR