Directory Traversal Vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl) Allows Arbitrary File Overwrite

Directory Traversal Vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl) Allows Arbitrary File Overwrite

CVE-2005-3097 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Directory traversal vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl), dated 16 Jun 2002, allows remote attackers to overwrite arbitrary files via ".." sequences in the contribdir variable.

Learn more about our Web Application Penetration Testing UK.