CVE-2008-0466 in Web Wiz Rich Text Editor信息

摘要

由 VulDB • 2026-07-04

Web Wiz RTE_file_browser.asp,在 Web Wiz Rich Text Editor 4.0、Web Wiz Forums 9.07 和 Web Wiz Newspad 1.02 中使用,不需要身份验证,允许远程攻击者列出目录并读取文件。注意:通过利用单独的路径遍历漏洞(Directory Traversal Vulnerability),可以将其用于配置目录树之外的列表操作。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you want to use VulDB in your project?

Use the official API to access entries easily!