HTTP Exploit in eMLi Portal in AuroMeera Technometrix Pvt. Ltd. eMLi allows an Attacker to View Restricted Information or (even more seriously) execute powerful commands on the web server which can lead to a full compromise of the system via Directory Path Traversal, as demonstrated by reading core-emli/Storage. The affected versions are eMLi School Management 1.0, eMLi College Campus Management 1.0, and eMLi University Management 1.0.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/97255 | Third Party Advisory VDB Entry |
https://sudoat.blogspot.in/2017/03/path-traversal-vulnerability-in-emli.html | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-03-29T20:00:00
Updated: 2017-04-03T09:57:01
Reserved: 2017-03-24T00:00:00
Link: CVE-2017-7258
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-03-29T20:59:00.340
Modified: 2017-04-10T16:27:25.750
Link: CVE-2017-7258
JSON object: View
Redhat Information
No data.
CWE