Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in repository/repository_attachment.php in AlienVault Open Source Security Information Management (OSSIM) 2.1.5, and possibly other versions before 2.1.5-4, allows remote attackers to upload files into arbitrary directories via a .. (dot dot) in the id_document parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AlienVault公开资源安全信息管理'repository_attachment.php'目录遍历漏洞
Vulnerability Description
AlienVault公开资源安全信息管理(OSSIM)中的repository/repository_attachment.php存在目录遍历漏洞,远程攻击者可以借助id_document参数中的一个".."把文件上载到任意目录。
CVSS Information
N/A
Vulnerability Type
N/A