Description
Directory traversal vulnerability in SeaNox Devwex before 1.2002.0601 allows remote attackers to read arbitrary files via ..\ (dot dot) sequences in an HTTP request.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Kistler Ueli · textremotewindows
https://www.exploit-db.com/exploits/21530
References (5)
Core 5
Core References
Third Party Advisory mailing-list
x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-06/0056.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/5048
Various Sources x_refsource_confirm
http://www.seanox.de/projects.devwex.php
Patch, Vendor Advisory vdb-entry
x_refsource_xf
http://www.iss.net/security_center/static/9299.php
Exploit, Patch, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/4978
Scores
EPSS
0.0818
EPSS Percentile
92.3%
Details
Status
published
Products (1)
seanox/devwex
2002-05-20
Published
Oct 04, 2002
Tracked Since
Feb 18, 2026