exploitDog

GHSA-97x3-pw87-2536

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.

Ссылки

EPSS

Процентиль: 92%

0.08373

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2008-3371

nvd

больше 17 лет назад

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.

EPSS

Процентиль: 92%

0.08373

Низкий

CVE ID

Дефекты

CWE-22