CVE-2011-4948

NONECVSS 0.0

0.0

Directory traversal vulnerability in admin/remote.php in EGroupware Enterprise Line (EPL) before 11.1.20110804-1 and EGroupware Community Edition before 1.8.001.20110805 allows remote attackers to read arbitrary files via a ..%2f (encoded dot dot slash) in the type parameter.

🔗 References (16)

secalert@redhathttp://comments.gmane.org/gmane.comp.web.egroupware.german/33144
secalert@redhathttp://packetstormsecurity.org/files/101676/eGroupware-1.8.001.20110421-Local-File-Inclusion.html
secalert@redhathttp://www.autosectools.com/Advisory/eGroupware-1.8.001.20110421-Local-File-Inclusion-224
secalert@redhathttp://www.egroupware.org/changelog
secalert@redhathttp://www.egroupware.org/epl-changelog
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/29/1
secalert@redhathttp://www.openwall.com/lists/oss-security/2012/03/30/3
secalert@redhathttp://www.securityfocus.com/bid/52770
af854a3a-2127-422b-91ae-364da2661108http://comments.gmane.org/gmane.comp.web.egroupware.german/33144
af854a3a-2127-422b-91ae-364da2661108http://packetstormsecurity.org/files/101676/eGroupware-1.8.001.20110421-Local-File-Inclusion.html
af854a3a-2127-422b-91ae-364da2661108http://www.autosectools.com/Advisory/eGroupware-1.8.001.20110421-Local-File-Inclusion-224
af854a3a-2127-422b-91ae-364da2661108http://www.egroupware.org/changelog
af854a3a-2127-422b-91ae-364da2661108http://www.egroupware.org/epl-changelog
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/29/1
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2012/03/30/3

Is Your Infrastructure Affected by CVE-2011-4948?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2011-4948

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2011-4948?