HomePentest-Tools.com Logo

Generic HTTP Directory Traversal (Web Root) - Active Check CVE-2010-2307CVE-2010-4231CVE-2014-2323CVE-2015-2166CVE-2015-5688CVE-2017-11456CVE-2017-16806CVE-2018-10201CVE-2018-10956CVE-2018-14064CVE-2018-18778CVE-2018-19326CVE-2018-7490CVE-2018-7719CVE-2018-8727CVE-2019-18922CVE-2019-20085CVE-2019-7315CVE-2019-9726CVE-2020-12447CVE-2020-15050CVE-2020-24571CVE-2020-5410CVE-2021-3019CVE-2021-40978CVE-2021-41773CVE-2021-42013CVE-2022-26233CVE-2022-38794CVE-2023-22855

Severity
CVSSv3 Score
9.8
Vulnerability description

Generic check for HTTP directory traversal vulnerabilities on the web root level of the remote web server.

Risk description

Successfully exploiting this issue may allow an attacker to access paths and directories that should normally not be accessible by a user. This can result in effects ranging from disclosure of confidential information to arbitrary code execution.

Recommendation

Contact the vendor for a solution.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jun 16, 2010
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available