Mrtg : Security Vulnerabilities, CVEs,
14all.cgi 1.1p15 in mrtgconfig allows remote attackers to determine the physical path to the web root directory via a request with an invalid cfg parameter, which generates an error message that reveals the path.
Max CVSS
5.0
EPSS Score
0.54%
Published
2002-12-31
Updated
2017-07-11
Directory traversal vulnerability in Multi Router Traffic Grapher (MRTG) allows remote attackers to read portions of arbitrary files via a .. (dot dot) in the cfg parameter for (1) 14all.cgi, (2) 14all-1.1.cgi, (3) traffic.cgi, or (4) mrtg.cgi.
Max CVSS
5.0
EPSS Score
0.51%
Published
2002-05-29
Updated
2016-10-18
2 vulnerabilities found