Vulnerabilities > CVE-2004-2636

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
rit-research-labs
exploit available
NVD
Published: 2004-12-31
Updated: 2017-07-20

Summary

TinyWeb 1.9 allows remote attackers to read source code of scripts via "/./" in the URL.

Vulnerable Configurations

Part Description Count
Application
Rit_Research_Labs
1

Exploit-Db

descriptionRit Research Labs TinyWeb 1.9.2 Unauthorized Script Disclosure Vulnerability. CVE-2004-2636. Webapps exploit for cgi platform
idEDB-ID:24164
last seen2016-02-02
modified2004-06-01
published2004-06-01
reporterZiv Kamir
sourcehttps://www.exploit-db.com/download/24164/
titleRit Research Labs TinyWeb 1.9.2 Unauthorized Script Disclosure Vulnerability

References