AjaXplorer 'doc_file' Parameter Local File Disclosure Vulnerability Network Vulnerability

Summary

AjaXplorer is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local text files on computers running the vulnerable application. This may aid in further attacks. AjaXplorer 4.0.1 is vulnerable other versions are also affected.

Solution

Updates are available. Please see the references for more details.

References

http://ajaxplorer.info/ajaxplorer-4-0-2/
http://www.ajaxplorer.info
http://www.securityfocus.com/bid/51960

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities
Apache mod_proxy_ajp Information Disclosure Vulnerability
Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability
Apache Tomcat Login Constraints Security Bypass Vulnerability
aeNovo Database Content Disclosure Vulnerability

Take action and discover your vulnerabilities