Summary
The Advantech Studio is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.
A remote attacker can use directory-traversal strings to retrieve arbitrary files in the context of the affected application.
Advantech Studio 7.0 is vulnerable
other versions may also be
affected.
References
Severity
Classification
-
CVSS Base Score: 7.8
AV:N/AC:L/Au:N/C:C/I:N/A:N
Related Vulnerabilities
- AstroSPACES profile.php SQL Injection Vulnerability
- Arkeia Appliance Path Traversal Vulnerability
- AproxEngine Multiple Remote Input Validation Vulnerabilities
- Apache Struts2 Showcase Arbitrary Java Method Execution vulnerability
- AlienVault OSSIM 'date_from' Parameter Multiple SQL Injection Vulnerabilities