Description
Redatam7 (formerly Redatam WebServer) allows remote attackers to discover the installation path via an invalid LFN parameter to the /redbin/rpwebutilities.exe/text URI.
Exploits (1)
exploitdb
WORKING POC
by Berk Dusunur · textwebappswindows
https://www.exploit-db.com/exploits/44905
References (1)
Core 1
Core References
Exploit, Third Party Advisory, VDB Entry exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/44905/
Scores
CVSS v3
5.3
EPSS
0.0021
EPSS Percentile
42.7%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
redatam/redatam
< 7
Published
Jun 21, 2018
Tracked Since
Feb 18, 2026