Aptana Jaxer 1.0.3.4547 is vulnerable to a local file inclusion vulnerability in the wikilite source code viewer. This vulnerability allows a remote attacker to read internal files on the server via a tools/sourceViewer/index.html?filename=../ URI.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/153985/Aptana-Jaxer-1.0.3.4547-Local-File-Inclusion.html | Exploit Third Party Advisory VDB Entry |
https://github.com/aptana/Jaxer/commits/master | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2019-08-09T12:31:53
Updated: 2019-08-09T12:31:53
Reserved: 2019-07-27T00:00:00
Link: CVE-2019-14312
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-08-09T13:15:11.870
Modified: 2019-08-19T15:32:15.043
Link: CVE-2019-14312
JSON object: View
Redhat Information
No data.
CWE