WeBid 'getthumb.php' Remote File Disclosure Vulnerability Network Vulnerability

Summary

WeBid is prone to a remote file-disclosure vulnerability because it fails to adequately validate user-supplied input. Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks. WeBid 1.0.4 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/55080
http://www.webidsupport.com/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Apache ActiveMQ Multiple Vulnerabilities
APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities
Allaire JRun directory browsing vulnerability
An Image Gallery Multiple Cross-Site Scripting Vulnerability

Take action and discover your vulnerabilities