Http Commander: >> Http Commander >> 4.0 Security Vulnerabilities
Directory traversal vulnerability in (1) Openfile.aspx and (2) Html.aspx in HTTP Commander 4.0 allows remote attackers to view arbitrary files via a .. (dot dot) in the file parameter.
CVSS Score
5.0
EPSS Score
0.048
Published
2003-12-31
HTTP Commander 4.0 allows remote attackers to obtain sensitive information via an HTTP request that contains a . (dot) in the file parameter, which reveals the installation path in an error message.
CVSS Score
5.0
EPSS Score
0.004
Published
2003-12-31