Описание
Directory traversal vulnerability in index.php in FreeWebshop 2.2.1 and earlier allows remote attackers to read arbitrary files and disclose the installation path via a .. (dot dot) in the action parameter.
Directory traversal vulnerability in index.php in FreeWebshop 2.2.1 and earlier allows remote attackers to read arbitrary files and disclose the installation path via a .. (dot dot) in the action parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5773
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29991
- https://www.exploit-db.com/exploits/2704
- http://secunia.com/advisories/22664
- http://www.freewebshop.org/index.php?id=27
- http://www.securityfocus.com/bid/20888
- http://www.vupen.com/english/advisories/2006/4332
EPSS
Процентиль: 94%
0.12472
Средний
CVE ID
Связанные уязвимости
nvd
больше 19 лет назад
Directory traversal vulnerability in index.php in FreeWebshop 2.2.1 and earlier allows remote attackers to read arbitrary files and disclose the installation path via a .. (dot dot) in the action parameter.
EPSS
Процентиль: 94%
0.12472
Средний