Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
nmap version 6.49BETA6 through 7.60, up to and including SVN revision 37147 contains a Directory Traversal vulnerability in NSE script http-fetch that can result in file overwrite as the user is running it. This attack appears to be exploitable via a victim that runs NSE script http-fetch against a malicious web site. This vulnerability appears to have been fixed in 7.7.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nmap 路径遍历漏洞
Vulnerability Description
Nmap(Network Mapper)是美国软件开发者Gordon Lyon所研发的一套用于网络发现(Network Discovery)和安全审计(Security Auditing)的网络安全工具,该工具可对操作系统、端口开放情况与设备类型等进行详细检测。 Nmap 6.49BETA6版本至7.60版本和SVN 37147及之前版本(修订版)中的http-fetch(NSE脚本)存在目录遍历漏洞。当用户在对恶意的网站运行http-fetch时,攻击者可利用该漏洞覆盖文件。
CVSS Information
N/A
Vulnerability Type
N/A