Unrated severityNVD Advisory· Published Jul 19, 2011· Updated Jun 16, 2026
CVE-2011-2744
CVE-2011-2744
Description
Directory traversal vulnerability in Chyrp 2.1 and earlier allows remote attackers to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the action parameter to the default URI.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:chyrp:chyrp:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:chyrp:chyrp:*:*:*:*:*:*:*:*range: <=2.1
- cpe:2.3:a:chyrp:chyrp:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:chyrp:chyrp:2.1:beta1:*:*:*:*:*:*
- cpe:2.3:a:chyrp:chyrp:2.1:beta2:*:*:*:*:*:*
- cpe:2.3:a:chyrp:chyrp:2.1:rc:*:*:*:*:*:*
- (no CPE)range: <=2.1
Patches
Vulnerability mechanics
References
10- www.justanotherhacker.com/advisories/JAHx113.txtnvdExploit
- www.openwall.com/lists/oss-security/2011/07/13/5nvdExploit
- www.openwall.com/lists/oss-security/2011/07/13/6nvdExploit
- www.securityfocus.com/bid/48672nvdExploit
- secunia.com/advisories/45184nvdVendor Advisory
- osvdb.org/73890nvd
- securityreason.com/securityalert/8312nvd
- www.ocert.org/advisories/ocert-2011-001.htmlnvd
- www.securityfocus.com/archive/1/518890/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/68564nvd
News mentions
0No linked articles in our index yet.