VULHUB ™

A file disclosure vulnerability has been reported in myServer that could permit remote attackers to gain access to sensitive files outside of the web root directory of the server. This is a variant of previously reported vulnerabilities (in particular BID 7944) that is known to affect myServer 0.4.3. The main difference is that it is possible to escape web root using a combination of './' and '../' sequences.

A file disclosure vulnerability has been reported in myServer that could permit remote attackers to gain access to sensitive files outside of the web root directory of the server. This is a variant of previously reported vulnerabilities (in particular BID 7944) that is known to affect myServer 0.4.3. The main difference is that it is possible to escape web root using a combination of './' and '../' sequences.