NVD

Id
32987  
Name
CVE-2014-5258  
Description
Directory traversal vulnerability in showTempFile.php in webEdition CMS before 6.3.9.0 Beta allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.  
Reject
 
CVSS Version
2  
CVSS Score
4  
Severity
Medium  
CVSS Base Score
4  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2014-11-06  
Modified Date
2014-11-07  
Seq
2014-5258  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
173146 32987 CVE-2014-5258 http://packetstormsecurity.com/files/128301/webEdition-6.3.8.0-Path-Traversal.html  View
173147 32987 CVE-2014-5258 20140917 Path Traversal in webEdition  View
173148 32987 CVE-2014-5258 http://www.webedition.org/de/aktuelles/webedition-cms/webEdition-6.3.9-Beta-erschienen  View
173149 32987 CVE-2014-5258 http://www.webedition.org/de/webedition-cms/versionshistorie/webedition-6/version-6.3.9.0  View
173150 32987 CVE-2014-5258 https://www.htbridge.com/advisory/HTB23227  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
16415 JVNDB-2014-005290 webEdition CMS の showTempFile.php におけるディレクトリトラバーサルの脆弱性 webEdition CMS の showTempFile.php には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2014-5258 72547 CVE-2014-5258 32987 4 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-005290.html 2014-10-21 2014-11-10 View