Corda Highwire – ‘Highwire.ashx’ Full Path Disclosure

  • 作者: Adam Willard
    日期: 2013-07-12
  • 类别:
    平台:
  • 来源:https://www.exploit-db.com/exploits/38653/
  • source: https://www.securityfocus.com/bid/61152/info

Corda Highwire is prone to a path disclosure vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this issue to obtain sensitive information that may lead to further attacks. 

http://www.example.com/highwire.ashx?url=../../