Описание
Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.
Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-1073
- https://exchange.xforce.ibmcloud.com/vulnerabilities/25067
- http://notlegal.ws/simplogsploit.txt
- http://secunia.com/advisories/19115
- http://securityreason.com/securityalert/542
- http://www.securityfocus.com/archive/1/426769/100/0/threaded
- http://www.securityfocus.com/bid/16965
- http://www.vupen.com/english/advisories/2006/0839
EPSS
Процентиль: 93%
0.09894
Низкий
CVE ID
Связанные уязвимости
nvd
почти 20 лет назад
Directory traversal vulnerability in index.php in Daverave Simplog 1.0.2 and earlier allows remote attackers to include or read arbitrary .txt files via the (1) act and (2) blogid parameters.
EPSS
Процентиль: 93%
0.09894
Низкий