Title: Power Up HTML Directory Traversal Arbitrary File Disclosure Vulnerability
Severity: HIGH
Description:
Power Up HTML is a set of HTML-like commands that can be placed into web pages. It provides a central routing point to simplify programming and customization of CGI scripts.
The primary scripts in Power Up HTML (r.pl or r.cgi) do not filter ../ requests. This allows a user to construct a HTTP request which could allow disclosure of file contents or code execution. Failure to filter metacharacters from HTTP requests can allow user-supplied values to run.
In order to view or execute the files, the web service would have to have adequate permission to them.
Affected Products:
- Randy Parker Power Up HTML 0.8033.0 beta
References:
- Randy Parker: Power Up HTML
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
