- Home
- CVEs with nessus.description==The Sophos Web Protection application running on the remote host is affected by a directory traversal vulnerability in the patience.cgi script due to improper sanitization of user-supplied input passed to the 'id' parameter. An unauthenticated, remote attacker can exploit this to retrieve arbitrary files from the remote host subject to the privileges of the user running the web server.
Note that the application is reportedly affected by additional vulnerabilities; however, this plugin has not tested for them.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top