19 Jui 2019
Vulnérabilité CVE-2019-10257 CVE Vulnerability
Zucchetti HR Portal through 2019-03-15 allows Directory Traversal. Unauthenticated users can escape outside of the restricted location (dot-dot-slash notation) to access files or directories that are elsewhere on the system. Through this vulnerability it is possible to read the application's java sources from /WEB-INF/classes/*.class (CVSS:0.0) (Last Update:2019-06-19)
Vulnerability Details : Zucchetti HR Portal through 2019-03-15 allows Directory Traversal. Unauthenticated users can escape outside of the restricted location (dot-dot-slash notation) to access files or directories that are elsewhere on the system. Through this vulnerability it is possible to read the application's java sources from /WEB-INF/classes/*.class Publish Date : 2019-06-19 Last Update Date : 2019-06-19 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2019-10257
- References For CVE-2019-10257
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2019-10257There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |