Produkt Webpals (...) - CVEMAP.ORG

Podatności dla 'Webpals'

2001-06-02

CVE-2001-0217

Directory traversal vulnerability in PALS Library System pals-cgi program allows remote attackers to read arbitrary files via a .. (dot dot) in the documentName parameter.

CVE-2001-0216

PALS Library System pals-cgi program allows remote attackers to execute arbitrary commands via shell metacharacters in the documentName parameter.

Copyright 2024, cxsecurity.com