Exploit for Path Traversal in Revisorlab Video Management System CVE-2021-42261

Name: Exploit for Path Traversal in Revisorlab Video Management System CVE-2021-42261
Rating: 5 (79 reviews)

2021-10-12 | CVSS 5.0

## https://sploitus.com/exploit?id=7DBF18AF-114E-548C-944D-66342883D765
# CVE-2021-42261

## [Suggested description]
Revisor Video Management System (VMS) before 2.0.0 has a directory traversal vulnerability. Successful exploitation could allow an attacker to traverse the file system to access files or directories that are outside of restricted directory on the remote server. This could lead to the disclosure of sensitive data on the vulnerable server.

## [Vulnerability Type]
Directory Traversal

## [Vendor of Product]
Revisor Lab

## [Affected Product Code Base]
Revisor VMS < 2.0.0

## [Affected Component]
Web-Server

## [Attack Type]
Remote

## [Has vendor confirmed or acknowledged the vulnerability?]
true

## [Impact Information Disclosure]
true

## [Reference]
https://revisorlab.com/

## [Discoverer]
Vladimir Rotanov (Jet Infosystems (jet.su), Moscow, Russia)