cve/CVE-2019-10009.md at 4024663e83c70ac127726b49919178f8121c5338

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 09:12:08 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

A Directory Traversal issue was discovered in the Web GUI in Titan FTP Server 2019 Build 3505. When an authenticated user attempts to preview an uploaded file (through PreviewHandler.ashx) by using a ....\ technique, arbitrary files can be loaded in the server response outside the root directory.

POC

Reference

http://packetstormsecurity.com/files/152244/Titan-FTP-Server-2019-Build-3505-Directory-Traversal.html
http://seclists.org/fulldisclosure/2019/Mar/47
https://seclists.org/fulldisclosure/2019/Mar/47
https://www.exploit-db.com/exploits/46611
https://www.exploit-db.com/exploits/46611/

Github

https://github.com/ARPSyndicate/cvemon

1017 B Raw Blame History

CVE-2019-10009

Description

POC

Reference

Github

1017 B

Raw Blame History