PaperThin CommonSpot before 7.0.2 and 8.x before 8.0.3 allows remote attackers to bypass intended access restrictions via a '\0' character, as demonstrated by using this character within a pathname on the drive containing the web root directory of a ColdFusion installation.
References
Link Resource
http://www.kb.cert.org/vuls/id/437385 US Government Resource
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:20:48

Updated: 2022-10-03T16:20:48

Reserved: 2022-10-03T00:00:00


Link: CVE-2014-2865

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2014-04-15T23:13:17.447

Modified: 2014-04-16T14:20:16.377


Link: CVE-2014-2865

JSON object: View

cve-icon Redhat Information

No data.

CWE