RSS   Vulnerabilities for 'Arsdigita community system'   RSS

2007-01-19
 
CVE-2007-0389

CWE-Other
 

 
Directory traversal vulnerability in ArsDigita Community System (ACS) 3.4.10 and earlier, and ArsDigita Community Education Solution (ACES) 1.1, allows remote attackers to read arbitrary files via .%252e/ (double-encoded dot dot slash) sequences in the URI.

 

 >>> Vendor: Arsdigita 2 Products
Arsdigita community education solution
Arsdigita community system


Copyright 2024, cxsecurity.com

 

Back to Top