CVE-2018-5716

Published: Feb 21, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

An issue was discovered in Reprise License Manager 11.0. This vulnerability is a Path Traversal where the attacker, by changing a field in the Web Request, can have access to files on the File System of the Server. By specifying a pathname in the POST parameter "lf" to the goform/edit_lf_get_data URI, the attacker can retrieve the content of a file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.0x90.zone/web/path-traversal/2018/02/16/Path-Traversal-Reprise-LM.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-5716

Description

Affected Products

References