Exploitation Summary
EIP tracks 1 public exploit for CVE-2001-0626. PoCs published by Roberto Moreno.
AI-analyzed exploit summary This exploit leverages a path disclosure vulnerability in O'Reilly & Associates Website Professional by requesting a malformed URL (/:/) to reveal the physical path of the root directory. The attack is trivial and relies on improper input handling by the server.
Description
O'Reilly Website Professional 2.5.4 and earlier allows remote attackers to determine the physical path to the root directory via a URL request containing a ":" character.
Exploits (1)
This exploit leverages a path disclosure vulnerability in O'Reilly & Associates Website Professional by requesting a malformed URL (/:/) to reveal the physical path of the root directory. The attack is trivial and relies on improper input handling by the server.