exploitDog

CVE-2002-2167

Опубликовано: 31 дек. 2002

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:thorsten_korner:123tkshop:0.2:*:*:*:*:*:*:*

cpe:2.3:a:thorsten_korner:123tkshop:0.3:*:*:*:*:*:*:*

EPSS

Процентиль: 74%

0.00859

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-596q-fm96-jm8g

github

больше 3 лет назад

Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call.

EPSS

Процентиль: 74%

0.00859

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other