PHP.FileServer.php.SRC.Parameter.Directory.Traversal

description-logoDescription

This indicates a possible exploit of a directory-traversal vulnerability in FileServer.php in ContentServ.
This vulnerability is in the "admin/FileServer.php" script and is caused by the script's inability to properly validate the "src" parameter. An attacker may exploit this to access arbitrary files.

affected-products-logoAffected Products

ContentServ version 4.2 and prior

Impact logoImpact

System compromise.

recomended-action-logoRecommended Actions

Apply the patch found at the following web site:
http://www.contentserv.com/CSWeb/CSNet-Products-Security_Patches--328.htm

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-09-26 13.458