CVE-2001-0305

Thinking Arts ES.One - Directory Traversal via StartID Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2001-0305. PoCs published by slipy.

AI-analyzed exploit summary This is a writeup describing a directory traversal vulnerability in ES.One via 'store.cgi'. The exploit leverages '/../' sequences and a null byte ('%00') to access arbitrary files or list directories outside the web root.

Description

Directory traversal vulnerability in store.cgi in Thinking Arts ES.One package allows remote attackers to read arbitrary files via a .. (dot dot) in the StartID parameter.

Exploits (1)

exploitdb WRITEUP VERIFIED
by slipy · textremotelinux
https://www.exploit-db.com/exploits/20636

This is a writeup describing a directory traversal vulnerability in ES.One via 'store.cgi'. The exploit leverages '/../' sequences and a null byte ('%00') to access arbitrary files or list directories outside the web root.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: ES.One (version not specified)
No auth needed
Prerequisites: Access to the target's 'store.cgi' endpoint
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-02/0324.html
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/2385

Scores

EPSS 0.0648
EPSS Percentile 92.9%

Details

Status published
Products (1)
thinking_arts/es.one 1.0
Published May 03, 2001
Tracked Since Feb 18, 2026