WeBid 'getthumb.php' Remote File Disclosure Vulnerability Network Vulnerability

Summary

WeBid is prone to a remote file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks. WeBid 1.0.4 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/55080
http://www.webidsupport.com/

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Apache Struts2 showcase namespace XSS Vulnerability
Afian 'includer.php' Directory Traversal Vulnerability
Apache Tomcat NIO Connector Denial of Service Vulnerability
Apple Safari Multiple Vulnerabilities
Apache Tomcat RemoteFilterValve Security Bypass Vulnerability

Take action and discover your vulnerabilities