CVE-2015-2214
NetCat < 5.01 - Exposure of Sensitive Information via Redirect URL Parameter
Title source: llmDescription
NetCat 5.01 and earlier allows remote attackers to obtain the installation path via the redirect_url parameter to netshop/post.php.
References (4)
Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/130583/NetCat-CMS-5.01-3.12-Full-Path-Disclosure.html
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2015/Mar/8
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/72854
Scores
EPSS
0.0236
EPSS Percentile
81.7%
Details
CWE
CWE-200
Status
published
Products (1)
netcat/netcat
< 5.01
Published
Mar 05, 2015
Tracked Since
Feb 18, 2026