CVE-2002-0611
FileSeek.cgi - Directory Traversal via Head or Foot Parameters
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2002-0611. PoCs published by Thijs Bosschert.
AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in FileSeek.cgi and FileSeek2.cgi, allowing remote attackers to read arbitrary files outside the webroot by manipulating the 'head' and 'foot' parameters with '../' sequences.
Description
Directory traversal vulnerability in FileSeek.cgi allows remote attackers to read arbitrary files via a ....// (modified dot dot) in the (1) head or (2) foot parameters, which are not properly filtered.
Exploits (1)
This exploit demonstrates a directory traversal vulnerability in FileSeek.cgi and FileSeek2.cgi, allowing remote attackers to read arbitrary files outside the webroot by manipulating the 'head' and 'foot' parameters with '../' sequences.