exploitDog

GHSA-6vw8-p3h2-qw42

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Absolute path traversal vulnerability in mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to read arbitrary files via a full pathname in the sFileName parameter.

Absolute path traversal vulnerability in mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to read arbitrary files via a full pathname in the sFileName parameter.

Ссылки

EPSS

Процентиль: 88%

0.0382

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2008-5579

nvd

около 17 лет назад

Absolute path traversal vulnerability in mini-pub.php/front-end/cat.php in mini-pub 0.3 allows remote attackers to read arbitrary files via a full pathname in the sFileName parameter.

EPSS

Процентиль: 88%

0.0382

Низкий

CVE ID

Дефекты

CWE-22