Summary
Cryptographp is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to view files and execute local scripts from the Cryptographp directory in the context of the webserver process. This may aid in further attacks.
Cryptographp 1.4 is vulnerable
other versions may also be affected.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apache Tomcat Information Disclosure Vulnerability
- Allaire JRun directory browsing vulnerability
- Adobe BlazeDS XML and XML External Entity Injection Vulnerabilities
- appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
- Allegro RomPager HTTP Referer Header Cross Site Scripting Vulnerability