Description
Directory traversal vulnerability in Groupmax World Wide Web (GmaxWWW) 2 and 3, and Desktop 5, 6, and Desktop for Jichitai allows remote authenticated users to read arbitrary .html files via the template name parameter.
References (5)
Core 5
Core References
Patch, Vendor Advisory x_refsource_confirm
http://www.hitachi-support.com/security_e/vuls_e/HS04-007_e/01-e.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/12153
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18278
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/13321
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11773
Scores
EPSS
0.0122
EPSS Percentile
79.3%
Details
Status
published
Products (24)
hitachi/groupmax_world_wide_web
2
hitachi/groupmax_world_wide_web
02_00
hitachi/groupmax_world_wide_web
02_20
hitachi/groupmax_world_wide_web
02_20_a
hitachi/groupmax_world_wide_web
02_31_i
hitachi/groupmax_world_wide_web
3
hitachi/groupmax_world_wide_web
03_00
hitachi/groupmax_world_wide_web
03_10_h
hitachi/groupmax_world_wide_web
03_11_b
hitachi/groupmax_world_wide_web_desktop
5
... and 14 more
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026