CVE-2014-2069
published 2018-04-16CVE-2014-2069: Absolute path traversal vulnerability in Eshtery CMS allows remote attackers to read arbitrary files via a full pathname in the file parameter to…
PriorityP261high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
16.03%
96.5th percentile
Absolute path traversal vulnerability in Eshtery CMS allows remote attackers to read arbitrary files via a full pathname in the file parameter to FileManager.aspx.
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor HTTP requests to FileManager.aspx containing an absolute/full path in the 'file' query parameter (e.g., drive-letter-rooted paths like E:\...) as this is the exploitation vector for arbitrary file read. ↗
- →Alert on GET requests to FileManager.aspx where the 'file' parameter contains a Windows absolute path (e.g., a drive letter followed by a colon and backslash), indicating a path traversal/local file disclosure attempt. ↗
- ·The exploit uses a full Windows absolute path (e.g., E:\web\admin.asp) rather than a relative traversal sequence (../), so detection rules must account for drive-letter-rooted paths in the 'file' parameter, not just dot-dot sequences. ↗
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
2018-04-16
Published