Vulnerability Details CVE-2012-5335
Directory traversal vulnerability in Tiny Server 1.1.5 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the URI of an HTTP request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.073
EPSS Ranking 91.2%
CVSS Severity
CVSS v2 Score 4.0
References
- http://www.exploit-db.com/exploits/18610
- http://www.osvdb.org/80586
- http://www.securityfocus.com/bid/52541
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74114
- http://www.exploit-db.com/exploits/18610
- http://www.osvdb.org/80586
- http://www.securityfocus.com/bid/52541
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74114
Products affected by CVE-2012-5335
-
cpe:2.3:a:saurabh_gupta:tiny_server:1.1.5