1 results (0.005 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via a %2E%2E (encoded dot dot) in the minifierBundleDir parameter to barebone.jsp. Vulnerabilidad de salto de directorio en Liferay Liferay 5.1.0 permite a atacantes remotos tener un impacto no especificado a través de un %2E%2E (punto punto codificado) en el parámetro minifierBundleDir para barebone.jsp. • http://www.openwall.com/lists/oss-security/2016/08/01/5 http://www.openwall.com/lists/oss-security/2016/08/02/1 http://www.securityfocus.com/bid/92215 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •