bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/linux/remote/32228.xml
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

12 lines
No EOL
517 B
XML
Raw Permalink Blame History

source: https://www.securityfocus.com/bid/30661/info
Bugzilla is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue will allow an attacker to view arbitrary local files within the context of the server. Information harvested may aid in launching further attacks.
The following versions are affected:
Bugzilla 2.22.1 through 2.22.4
Bugzilla 2.23.3 and later
<data encoding="filename">../relative_path/to/local_file</data>
Reference in a new issue View git blame Copy permalink