Security Advisory

CVE-2014-5370

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-04-21 15:00:00

Last updated 2024-08-06 11:41:49

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in the CFChart servlet (com.naryx.tagfusion.cfm.cfchartServlet) in New Atlanta BlueDragon before 7.1.1.18527 allows remote attackers to read or possibly delete arbitrary files via a .. (dot dot) in the QUERY_STRING to cfchart.cfchart.

← Browse all CVEs View on cve.org ↗