CVE-2007-2285
CVE-2007-2285
Directory traversal vulnerability in examples/layout/feed-proxy.php in Jack Slocum Ext 1.0 alpha1 (Ext JS) allows remote attackers to read arbitrary files via a .. (dot dot) in the feed parameter. NOTE: analysis by third party researchers indicates that this issue might be platform dependent.
Affected products
n/a · n/apublic PoCs found — 1
cve_referencewww.exploit-db.com/exploits/3800unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://attrition.org/pipermail/vim/2007-April/001545.htmlhttp://attrition.org/pipermail/vim/2007-April/001546.htmlhttp://attrition.org/pipermail/vim/2007-April/001549.htmlhttp://osvdb.org/35561https://exchange.xforce.ibmcloud.com/vulnerabilities/33864https://www.exploit-db.com/exploits/3800http://www.securityfocus.com/bid/23643