CVE-2013-1469

Опубликовано: 13 мар. 2013

Источник: debian

EPSS Средний

Описание

Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
piwigo	removed			package
piwigo	end-of-life		squeeze	package

Примечания

Request to mark the package as unsupported in #779104
https://www.htbridge.com/advisory/HTB23144

EPSS

Процентиль: 98%

0.51633

Средний

Связанные уязвимости

CVE-2013-1469

ubuntu

почти 13 лет назад

Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.

CVE-2013-1469

nvd

почти 13 лет назад

Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.

GHSA-p4fq-jh4w-p6hr

github

больше 3 лет назад

Directory traversal vulnerability in install.php in Piwigo before 2.4.7 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the dl parameter.

EPSS

Процентиль: 98%

0.51633

Средний