Redaxscript 'language' Parameter Local File Include Vulnerability Network Vulnerability

Summary

Redaxscript is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver process. This may aid in further attacks. Redaxscript 0.2.0 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/34476

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apache Tomcat NIO Connector Denial of Service Vulnerability
Apache Struts Directory Traversal Vulnerability
Apache Struts2 showcase namespace XSS Vulnerability
AN Guestbook Local File Inclusion Vulnerability
Apache Web Server Linefeed Memory Allocation Denial Of Service Vulnerability

Take action and discover your vulnerabilities