CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-0578

WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash (//) characters in a URL request to the wingate-internal directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://marc.info/?l=full-disclosure&m=108872788123695&w=2
http://www.idefense.com/application/poi/display?id=113
https://exchange.xforce.ibmcloud.com/vulnerabilities/16589
http://marc.info/?l=full-disclosure&m=108872788123695&w=2
http://www.idefense.com/application/poi/display?id=113
https://exchange.xforce.ibmcloud.com/vulnerabilities/16589

Products affected by CVE-2004-0578

Qbik » Wingate » Version: 5.0.5

cpe:2.3:a:qbik:wingate:5.0.5
Qbik » Wingate » Version: 5.2.3

cpe:2.3:a:qbik:wingate:5.2.3
Qbik » Wingate » Version: 6.0_beta_2

cpe:2.3:a:qbik:wingate:6.0_beta_2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0578

Products

Pricing

Contact Us