Arbitrary Path Traversal Vulnerability in ASUSTOR AS6202T ADM 3.1.0.RFQ3's fileExplorer.cgi

Arbitrary Path Traversal Vulnerability in ASUSTOR AS6202T ADM 3.1.0.RFQ3's fileExplorer.cgi

CVE-2018-11342 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

A path traversal vulnerability in fileExplorer.cgi in ASUSTOR AS6202T ADM 3.1.0.RFQ3 allows attackers to arbitrarily specify a path to a file on the system to create folders via the dest_folder parameter.

Learn more about our Web Application Penetration Testing UK.