exploitDog

GHSA-4r77-3p2f-hv57

Опубликовано: 02 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.

Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.

Ссылки

EPSS

Процентиль: 86%

0.02707

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2009-0596

nvd

почти 17 лет назад

Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.

EPSS

Процентиль: 86%

0.02707

Низкий

CVE ID

Дефекты

CWE-22