Description
Directory traversal vulnerability in browser.php in JBrowser 1.0 through 2.1 allows remote attackers to read arbitrary files via the directory parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Himeur Nourredine · textwebappsphp
https://www.exploit-db.com/exploits/23618
References (2)
Core 2
Core References
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/9535
Exploit vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1008909
Scores
EPSS
0.0295
EPSS Percentile
86.5%
Details
CWE
CWE-22
Status
published
Products (3)
jbrowser/jbrowser
1.0
jbrowser/jbrowser
2.0
jbrowser/jbrowser
2.1
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026