CVE-2003-1345

WebCollection Plus 5.00 - Path Traversal via d Parameter

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in s.dll in WebCollection Plus 5.00 allows remote attackers to view arbitrary files in c:\ via a full pathname in the d parameter.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11064
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=104261317218210&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/6574

Scores

EPSS 0.0154
EPSS Percentile 72.0%

Details

CWE
CWE-22
Status published
Products (1)
follett_software/webcollection_plus 5.00
Published Dec 31, 2003
Tracked Since Feb 18, 2026