Vulnerabilities > CVE-2004-2636
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN exploit available
Summary
TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Rit Research Labs TinyWeb 1.9.2 Unauthorized Script Disclosure Vulnerability. CVE-2004-2636. Webapps exploit for cgi platform |
| id | EDB-ID:24164 |
| last seen | 2016-02-02 |
| modified | 2004-06-01 |
| published | 2004-06-01 |
| reporter | Ziv Kamir |
| source | https://www.exploit-db.com/download/24164/ |
| title | Rit Research Labs TinyWeb 1.9.2 Unauthorized Script Disclosure Vulnerability |
References
- http://secunia.com/advisories/11731
- http://secunia.com/advisories/11731
- http://securitytracker.com/alerts/2004/May/1010346.html
- http://securitytracker.com/alerts/2004/May/1010346.html
- http://www.osvdb.org/6517
- http://www.osvdb.org/6517
- http://www.securityfocus.com/bid/10445/info
- http://www.securityfocus.com/bid/10445/info
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16275
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16275