OSVDB ID: 17393 Title: NanoBlogger Unspecified Traversal Arbitrary Weblog Directory Creation |
Info |
|
|
Dates |
||||
|
|
Description |
NanoBlogger contains a flaw that could allow a remote attacker to create directiories outside of the weblog path. No further details have been provided. |
Classification |
Location:
Remote/Network Access Required
Attack Type: Input Manipulation Impact: Loss of Integrity Exploit: Exploit Unknown Disclosure: OSVDB Verified |
Solution |
Upgrade to version 3.2.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. |
Products |
|
References |
|
Credit |
Unknown or Incomplete |