CVE-2017-13780

The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows directory traversal attacks for reading arbitrary files via the module/admin_conf/download.php file parameter.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1-0:*:*:*:*:*:*:*

History

23 Feb 2021, 15:06

Type Values Removed Values Added
CPE cpe:2.3:a:eyesofnetwork:eonweb:5.1-0:*:*:*:*:*:*:* cpe:2.3:a:eyesofnetwork:eyesofnetwork:5.1-0:*:*:*:*:*:*:*

Information

Published : 2017-08-30 17:29

Updated : 2023-12-10 12:15


NVD link : CVE-2017-13780

Mitre link : CVE-2017-13780

CVE.ORG link : CVE-2017-13780


JSON object : View

Products Affected

eyesofnetwork

  • eyesofnetwork
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')