CVE-2005-3086
published 2005-09-27CVE-2005-3086: Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the…
PriorityP427medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
1.93%
77.5th percentile
Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| contentserv | contentserv | — | — |
| contentserv | contentserv | — | — |
| contentserv | contentserv | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-v7m2-9j42-rg8p: Directory traversal vulnerability in admin/FileServer
ghsa_unreviewed·2022-05-01·CVSS 6.4
CVE-2006-6277 [MEDIUM] GHSA-v7m2-9j42-rg8p: Directory traversal vulnerability in admin/FileServer
Directory traversal vulnerability in admin/FileServer.php in ContentServ 4.x allows remote attackers to read arbitrary files via a .. (dot dot) in the src parameter, a different vector than CVE-2005-3086.
GHSA
GHSA-85p6-3vc2-6v3w: Directory traversal vulnerability in admin/about
ghsa_unreviewed·2022-05-01
CVE-2005-3086 [MEDIUM] GHSA-85p6-3vc2-6v3w: Directory traversal vulnerability in admin/about
Directory traversal vulnerability in admin/about.php in contentServ 3.1 allows remote attackers to read or include arbitrary files via ".." sequences in the ctsWebsite parameter.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2005-09-27
Published