← back
CVE-2012-4031

CVE-2012-4031

EPSS 52.3%
Multiple directory traversal vulnerabilities in src/acloglogin.php in Wangkongbao CNS-1000 and 1100 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) langid cookie to port 85.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/19526unverifiedexploitdbwww.exploit-db.com/exploits/19526unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/83636http://secunia.com/advisories/49776https://exchange.xforce.ibmcloud.com/vulnerabilities/76682http://www.exploit-db.com/exploits/19526http://www.securityfocus.com/bid/54267