exploitDog

GHSA-wj2h-p5xg-r4jc

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.

Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.

Ссылки

EPSS

Процентиль: 96%

0.23329

Средний

CVE ID

Связанные уязвимости

CVE-2006-1260

ubuntu

больше 19 лет назад

Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.

CVE-2006-1260

nvd

больше 19 лет назад

Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.

CVE-2006-1260

debian

больше 19 лет назад

Horde Application Framework 3.0.9 allows remote attackers to read arbi ...

EPSS

Процентиль: 96%

0.23329

Средний

CVE ID