Exploitation Summary
EIP tracks 1 public exploit for CVE-2014-4306.
AI-analyzed exploit summary This is a detailed security advisory from SEC Consult Vulnerability Lab describing multiple critical vulnerabilities in WebTitan 4.01 (Build 68), including SQL injection, remote command execution, path traversal, and unprotected access. It provides technical details, affected parameters, and proof-of-concept examples for each vulnerability.
Description
Directory traversal vulnerability in logs-x.php in WebTitan before 4.04 allows remote attackers to read arbitrary files via a .. (dot dot) in the logfile parameter in a download action.
Exploits (1)
This is a detailed security advisory from SEC Consult Vulnerability Lab describing multiple critical vulnerabilities in WebTitan 4.01 (Build 68), including SQL injection, remote command execution, path traversal, and unprotected access. It provides technical details, affected parameters, and proof-of-concept examples for each vulnerability.