Vulnerabilities > CVE-2004-2127 - Unspecified vulnerability in Leif M. Wright web Blog 1.1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
leif-m-wright
exploit available
NVD
Published: 2004-01-20
Updated: 2017-07-11

Summary

Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file variable.

Vulnerable Configurations

Part Description Count
Application
Leif_M._Wright
1

Exploit-Db

descriptionLeif M. Wright Web Blog 1.1 File Disclosure Vulnerability. CVE-2004-2127. Webapps exploit for cgi platform
idEDB-ID:23613
last seen2016-02-02
modified2004-01-20
published2004-01-20
reporterZone-h Security Team
sourcehttps://www.exploit-db.com/download/23613/
titleLeif M. Wright Web Blog 1.1 File Disclosure Vulnerability

References