WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files from the root directory via a URL request to the wingate-internal directory.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Wingate | Qbik | 5.0.5 (including) | 5.0.5 (including) |
Wingate | Qbik | 5.2.3 (including) | 5.2.3 (including) |
Wingate | Qbik | 6.0_beta_2 (including) | 6.0_beta_2 (including) |