Vulnerability Details CVE-2005-4421
Dev-Editor 3.0 allows remote attackers to access any directory outside the web root whose name is a substring of the web root directory name.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.8%
CVSS Severity
CVSS v2 Score 7.5
References
- http://devedit.sourceforge.net/changelog.shtml
- http://secunia.com/advisories/17537/
- http://www.securityfocus.com/bid/15393
- http://www.vupen.com/english/advisories/2005/2389
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23057
- http://devedit.sourceforge.net/changelog.shtml
- http://secunia.com/advisories/17537/
- http://www.securityfocus.com/bid/15393
- http://www.vupen.com/english/advisories/2005/2389
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23057
Products affected by CVE-2005-4421
-
cpe:2.3:a:dev-editor:dev-editor:2.0
-
cpe:2.3:a:dev-editor:dev-editor:2.1
-
cpe:2.3:a:dev-editor:dev-editor:2.1a
-
cpe:2.3:a:dev-editor:dev-editor:2.2a
-
cpe:2.3:a:dev-editor:dev-editor:2.3
-
cpe:2.3:a:dev-editor:dev-editor:2.3.1
-
cpe:2.3:a:dev-editor:dev-editor:2.3.2
-
cpe:2.3:a:dev-editor:dev-editor:3.0