Vulnerabilities > Fools Workshop
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2004-11-23 | CVE-2004-0303 | Remote File Disclosure vulnerability in Owl's Workshop OWLS 1.0 allows remote attackers to retrieve arbitrary files via absolute pathnames in (1) the file parameter in /glossaries/index.php, (2) the filename parameter in /readings/index.php, or (3) the filename parameter in /multiplechoice/resultsignore.php, as demonstrated using /etc/passwd. | 5.0 |
2004-11-23 | CVE-2004-0302 | Remote File Disclosure vulnerability in Fools Workshop Owls Workshop 1.0 Directory traversal vulnerability in OWLS 1.0 allows remote attackers to read arbitrary files via a .. | 5.0 |