Описание
Directory traversal vulnerability in pageflipbook.php script from index.php in Page Flip Book plugin for WordPress (wppageflip) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pageflipbook_language parameter.
Directory traversal vulnerability in pageflipbook.php script from index.php in Page Flip Book plugin for WordPress (wppageflip) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pageflipbook_language parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-6652
- https://wordpress.org/support/topic/pageflipbook-pageflipbook_language-parameter-local-file-inclusion
- https://www.openwall.com/lists/oss-security/2014/07/30/2
- https://www.openwall.com/lists/oss-security/2014/07/31/8
- http://ceriksen.com/2012/07/10/wordpress-a-page-flip-book-plugin-local-file-inclusion-vulnerability
EPSS
CVE ID
Связанные уязвимости
Directory traversal vulnerability in pageflipbook.php script from index.php in Page Flip Book plugin for WordPress (wppageflip) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pageflipbook_language parameter.
EPSS