1 results (0.004 seconds)
CVSS: 7.5EPSS: 14%CPEs: 1EXPL: 2
CVSS: 7.5EPSS: 14%CPEs: 1EXPL: 2CVE-2013-2474 – AWS Xms 2.5 - 'importer.php?what' Directory Traversal
https://notcve.org/view.php?id=CVE-2013-2474
Directory traversal vulnerability in AWS XMS 2.5 allows remote attackers to view arbitrary files via the 'what' parameter. Una vulnerabilidad de salto de directorio en AWS XMS versión 2.5, permite a atacantes remotos visualizar archivos arbitrarios por medio del parámetro "what". AWS XMS version 2.5 suffers from a path traversal vulnerability. • https://www.exploit-db.com/exploits/24906 http://www.exploit-db.com/exploits/24906 http://www.securityfocus.com/bid/58753 https://exchange.xforce.ibmcloud.com/vulnerabilities/83062 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •