exploitDog

GHSA-27rh-43wm-hx6q

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter.

Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter.

Ссылки

EPSS

Процентиль: 58%

0.00371

Низкий

CVE ID

Связанные уязвимости

CVE-2005-2786

nvd

почти 20 лет назад

Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter.

EPSS

Процентиль: 58%

0.00371

Низкий

CVE ID