Wp-Cs-Dump

Wp-Cs-Dump



1/11/2002  · iPlanet Web Server and Netscape Enterprise Server permit unauthenticated remote users to enumerate server directories via Web Publisher commands such as ?wp-ver-info and ?wp- cs-dump . The directory listing will be provided regardless of the state of Web Publisher or access control lists (ACLs).


Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp- cs-dump . View Analysis Description Analysis Description, The version of Netscape Server running on the remote host is affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, by using a crafted URL request with special tags such as ‘?wp- cs-dump ‘ appended, to display a listing of the page directory, which may contain sensitive files. Solution, Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp- cs-dump . Impact: CVSS base score 5.0 CVSS impact score 2.9 CVSS exploitability score 10.0 confidentialityImpact PARTIAL integrityImpact NONE availabilityImpact NONE Details: Ease of Attack:, Netscape Enterprise Server with Directory Indexing enabled allows remote attackers to list server directories via web publishing tags such as ?wp-ver-info and ?wp- cs-dump . Impact: CVSS base score 5.0 CVSS impact score 2.9 CVSS exploitability score 10.0 confidentialityImpact PARTIAL integrityImpact NONE availabilityImpact NONE Details: Ease of Attack:, 4/20/2017  · cs-dump : Directory indexing found. cs-dump cs-dump , /?wp- cs-dump /?wp-html-rend /wp-login.php /_wpresources /_wpresources/ /?wp-start-ver /?wp-stop-ver /?wp-uncheckout /wp-users/ /?wp-usr-prop /?wp-ver-diff /?wp-verify-link /?wp-ver-info /ws_ftp.ini /wvdial.conf /~www /.wwwacl /.www_acl /wwwboard/ /~xfs /xmlrpc/ /xmlrpc.php /yarn-debug.log /yarn-error.log /yarn.lock /zebra.conf.bash_history.bashrc.cache.config.cvs.cvsignore, 10/21/2020  · by qhum7. 0day on TryHackMe is an easy Linux Box that requires minimal enumeration. To start, you have to find the /cgi-bin/ directory to exploit a shellshock vulnerability. After exploiting shellshock and gaining a low privilege shell, an outdated kernel can be exploited to gain root access.

Advertiser