CVE-2015-3897

EXPLOITED NUCLEI

Bonita BPM Portal <6.5.3 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2015-3897 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit. A Nuclei detection template is also available.

AI-analyzed exploit summary The advisory details two vulnerabilities in Bonita BPM Portal: a path traversal (CVE-2015-3897) allowing arbitrary file disclosure via the 'theme' and 'location' parameters, and an open redirect (CVE-2015-3898) via the 'redirectUrl' parameter. It includes PoC URLs but no functional exploit code.

Description

Directory traversal vulnerability in Bonita BPM Portal before 6.5.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the theme parameter and a file path in the location parameter to bonita/portal/themeResource.

Exploits (1)

exploitdb WRITEUP
webappsjsp
https://www.exploit-db.com/exploits/37260

The advisory details two vulnerabilities in Bonita BPM Portal: a path traversal (CVE-2015-3897) allowing arbitrary file disclosure via the 'theme' and 'location' parameters, and an open redirect (CVE-2015-3898) via the 'redirectUrl' parameter. It includes PoC URLs but no functional exploit code.

Classification
Writeup 95%
Attack Type
Info Leak | Other
Complexity
Trivial
Reliability
Reliable
Target: Bonita BPM 6.5.1 and prior
No auth needed
Prerequisites: Network access to the target server
devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

Bonita BPM Portal <6.5.3 - Local File Inclusion
MEDIUMby 0x_Akoko

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/535733/100/0/threaded

Scores

EPSS 0.5495
EPSS Percentile 98.1%

Details

VulnCheck KEV 2024-09-19
CWE
CWE-22
Status published
Products (1)
bonitasoft/bonita_bpm_portal < 6.5.2
Published Jun 18, 2015
Tracked Since Feb 18, 2026