Corda Highwire - 'Highwire.ashx' Full Path Disclosure
| EKU-ID: 43034 | CVE: | OSVDB-ID: |
| Author: Adam Willard | Published: 2013-07-12 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 43034 | CVE: | OSVDB-ID: |
| Author: Adam Willard | Published: 2013-07-12 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/61152/info Corda Highwire is prone to a path disclosure vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to obtain sensitive information that may lead to further attacks. http://www.example.com/highwire.ashx?url=../../