Vulnerability Details CVE-2003-1152
WebTide 7.04 allows remote attackers to list arbitrary directories via an HTTP request for %3f.jsp (encoded "?").
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.2%
CVSS Severity
CVSS v2 Score 5.0
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012811.html
- http://secunia.com/advisories/10078
- http://securitytracker.com/id?1008016
- http://www.osvdb.org/2719
- http://www.securityfocus.com/bid/8909
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13533
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012811.html
- http://secunia.com/advisories/10078
- http://securitytracker.com/id?1008016
- http://www.osvdb.org/2719
- http://www.securityfocus.com/bid/8909
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13533
Products affected by CVE-2003-1152
-
cpe:2.3:a:infrontech:webtide:7.0.4