CVE-2013-6000

Tattyan HP TOWN < 5_10_1 - Path Traversal via Dot-Dot Sequences

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in Tattyan HP TOWN before 5_10_1 allows remote attackers to read arbitrary files via a .. (dot dot) in a request.

References (3)

Core 3
Core References
Various Sources x_refsource_confirm
http://www2s.biglobe.ne.jp/~tatsuji/souko/Guidance1.html
Third Party Advisory third-party-advisory x_refsource_jvndb
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000112
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN41703192/index.html

Scores

EPSS 0.0185
EPSS Percentile 76.6%

Details

CWE
CWE-22
Status published
Products (2)
tattyan/tattyan_hptown 5_9_3
tattyan/tattyan_hptown < 5_10
Published Dec 05, 2013
Tracked Since Feb 18, 2026