Directory traversal vulnerability in editor.php in Network Weathermap 0.97c and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the mapname parameter in a show_config action.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2014-06-05T20:00:00
Updated: 2014-06-05T18:57:00
Reserved: 2013-06-03T00:00:00
Link: CVE-2013-3739
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-06-05T20:55:05.457
Modified: 2014-06-06T16:08:39.020
Link: CVE-2013-3739
JSON object: View
Redhat Information
No data.
CWE