CVE-2012-2208

Опубликовано: 14 авг. 2012

Источник: debian

EPSS Средний

Описание

Directory traversal vulnerability in upgrade.php in Piwigo before 2.3.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
piwigo	removed			package
piwigo	end-of-life		squeeze	package

Примечания

Request to mark the package as unsupported in #779104

EPSS

Процентиль: 95%

0.19226

Средний

Связанные уязвимости

CVE-2012-2208

ubuntu

больше 13 лет назад

Directory traversal vulnerability in upgrade.php in Piwigo before 2.3.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.

CVE-2012-2208

nvd

больше 13 лет назад

Directory traversal vulnerability in upgrade.php in Piwigo before 2.3.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.

GHSA-4hqq-6fv5-q77v

github

больше 3 лет назад

Directory traversal vulnerability in upgrade.php in Piwigo before 2.3.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.

EPSS

Процентиль: 95%

0.19226

Средний