daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update and rename oliver-library-server-lfi.yaml to oliver-library-lfi.yaml

patch-1
Prince Chaddha 2021-12-18 14:23:57 +05:30 committed by GitHub
parent 4fdb934da0
commit 8afbfdc8dc
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
vulnerabilities/other/oliver-library-server-lfi.yaml → vulnerabilities/other/oliver-library-lfi.yaml
View File

@ -1,11 +1,13 @@
id: oliver-library-server-lfi
id: oliver-library-lfi
info:
name: Oliver Library Server v5 - Arbitrary File Download
author: gy741
severity: high
description: An arbitrary file download vulnerability in Oliver v5 Library Server Versions < 8.00.008.053 via the FileServlet function allows for arbitrary file download by an attacker using unsanitized user supplied input.
reference: https://www.exploit-db.com/exploits/50599
reference:
- https://www.exploit-db.com/exploits/50599
- https://www.softlinkint.com/product/oliver/
tags: windows,lfi,oliver
requests: