Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Directory traversal vulnerability in cm/newui/blog/export.jsp in eTouch SamePage Enterprise Edition 4.4.0.0.239 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the filepath parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ETouch Systems SamePage Enterprise Edition 目录遍历漏洞
Vulnerability Description
ETouch Systems SamePage Enterprise Edition是美国ETouch Systems公司的一套为维基和博客提供支持的企业版维基(WiKi)解决方案。该方案支持团队协作、角色管理和文档管理等。 ETouch Systems SamePage Enterprise Edition 4.4.0.0.239版本的cm/newui/blog/export.jsp脚本中存在目录遍历漏洞。远程攻击者可借助‘filepath’参数中的目录遍历字符‘..’利用该漏洞读取任意文件。
CVSS Information
N/A
Vulnerability Type
N/A