exploitDog

GHSA-vwgx-w8wv-95f6

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote attackers to delete arbitrary files via a .. (dot dot) in the delete parameter.

Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote attackers to delete arbitrary files via a .. (dot dot) in the delete parameter.

Ссылки

EPSS

Процентиль: 87%

0.03511

Низкий

CVE ID

Дефекты

CWE-22

Связанные уязвимости

CVE-2008-5794

nvd

около 17 лет назад

Directory traversal vulnerability in system/admin/images.php in LoveCMS 1.6.2 Final allows remote attackers to delete arbitrary files via a .. (dot dot) in the delete parameter.

EPSS

Процентиль: 87%

0.03511

Низкий

CVE ID

Дефекты

CWE-22