Описание
Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files, and possibly execute local PHP files, via the action variable, which is used as part of a template filename.
Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files, and possibly execute local PHP files, via the action variable, which is used as part of a template filename.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2004-2255
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16177
- http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0906.html
- http://secunia.com/advisories/11640
- http://securitytracker.com/id?1010190
- http://www.osvdb.org/6300
- http://www.phpmyfaq.de/advisory_2004-05-18.php
- http://www.securityfocus.com/bid/10374
EPSS
Процентиль: 89%
0.04746
Низкий
CVE ID
Связанные уязвимости
nvd
около 21 года назад
Directory traversal vulnerability in phpMyFAQ 1.3.12 allows remote attackers to read arbitrary files, and possibly execute local PHP files, via the action variable, which is used as part of a template filename.
EPSS
Процентиль: 89%
0.04746
Низкий