exploitDog

GHSA-mg32-pj9q-4r54

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files, and possibly execute local PHP scripts, via the nmf parameter.

Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files, and possibly execute local PHP scripts, via the nmf parameter.

Ссылки

EPSS

Процентиль: 88%

0.03659

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2007-4820

nvd

больше 18 лет назад

Absolute path traversal vulnerability in blanko.preview.php in Sisfo Kampus 2006 allows remote attackers to read arbitrary local files, and possibly execute local PHP scripts, via the nmf parameter.

EPSS

Процентиль: 88%

0.03659

Низкий

CVE ID

Дефекты

CWE-22