cbcvebase.
CVE-2014-6308
published 2014-10-20

CVE-2014-6308: Directory traversal vulnerability in OSClass before 3.4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter in a render…

PriorityP343medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
22.26%
97.4th percentile
Directory traversal vulnerability in OSClass before 3.4.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter in a render action to oc-admin/index.php.

Affected

2 ranges
VendorProductVersion rangeFixed in
osclassosclass<= 3.4.1
osclassosclass

Detection & IOCsextracted from sources · hover to see the quote

url/osclass/oc-admin/index.php?page=appearance&action=render&file=../../../../../../../../../../etc/passwd
path/osclass/oc-admin/index.php
  • Look for GET requests to oc-admin/index.php with query parameters page=appearance, action=render, and a file parameter containing directory traversal sequences (../).
  • A successful exploitation attempt targeting /etc/passwd will return a response body matching the pattern 'root:.*:0:0:' with HTTP 200 status.
  • ·The vulnerability affects OSClass versions 3.4.1 and possibly below; version 3.4.2 contains the fix. Scope detection rules to target only these versions.
  • ·The LFI is unauthenticated (Au:N) and network-accessible (AV:N) with low complexity (AC:L), meaning no authentication bypass is required to trigger it.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.