HIGH🇬🇧 English

CVE-2020-35580

CVSS 7.5v3.1pub. 2021-05-20upd. 2024-11-21

A local file inclusion vulnerability in the FileServlet in all SearchBlox before 9.2.2 allows remote, unauthenticated users to read arbitrary files from the operating system via a /searchblox/servlet/FileServlet?col=url= request. Additionally, this may be used to read the contents of the SearchBlox configuration file (e.g., searchblox/WEB-INF/config.xml), which contains both the Super Admin's API key and the base64 encoded SHA1 password hashes of other SearchBlox users.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Searchblox

    APP
    Searchblox
    < 9.2.2
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Path Traversal
CWE
Referencje

Powiązane podatności

CVE-2020-10131CRITICAL9.8ten sam produkt

SearchBlox before Version 9.2.1 is vulnerable to CSV macro injection in "Featured Results" parameter.

CVE-2018-11586CRITICAL9.8ten sam produkt

XML external entity (XXE) vulnerability in api/rest/status in SearchBlox 8.6.7 allows remote unauthenticated u...

CVE-2015-7919CRITICAL10.0ten sam produkt

SearchBlox 8.3 before 8.3.1 allows remote attackers to write to the config file, and consequently cause a deni...

CVE-2020-10129HIGH8.8ten sam produkt

SearchBlox before Version 9.2.1 is vulnerable to Privileged Escalation-Lower user is able to access Admin func...

CVE-2020-10130HIGH8.8ten sam produkt

SearchBlox before Version 9.1 is vulnerable to business logic bypass where the user is able to create multiple...