Description
Directory traversal vulnerability in lastlines.cgi for Last Lines 2.0 allows remote attackers to read arbitrary files via '..' sequences in the $error_log variable.
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=100975978324723&w=2
Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/3754
Scores
EPSS
0.0256
EPSS Percentile
83.2%
Details
CWE
CWE-22
Status
published
Products (1)
matrixs_cgi_vault/last_lines
2.0
Published
Dec 30, 2001
Tracked Since
Feb 18, 2026