Bug 660 - Vulnerability
Summary: Vulnerability
Status: RESOLVED FIXED
Alias: None
Product: Web page
Classification: Unclassified
Component: Bugzilla (show other bugs)
Version: unspecified
Hardware: All All
: P5 critical
Assignee: Marius Mikučionis
URL: http://www.it.uu.se/research/group/da...
Depends on:
Blocks:
 
Reported: 2019-03-16 02:30 CET by Friendly Bug Finder
Modified: 2019-10-01 09:39 CEST (History)
1 user (show)

See Also:
Architecture:


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Friendly Bug Finder 2019-03-16 02:30:49 CET
Good afternoon,



    I would like to report a vulnerability on your website

Here it is


 http://www.it.uu.se/research/group/darts/uppaal/help.php?file=/../../../../../
Comment 1 Marius Mikučionis 2019-10-01 09:27:12 CEST
thank you for the report
Comment 2 Marius Mikučionis 2019-10-01 09:39:42 CEST
I've fixed the help.php and checked for more user inputs, it seems that this is the only vulnerable place.