exploitDog

CVE-2003-1239

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in sendphoto.php in WihPhoto 0.86 allows remote attackers to read arbitrary files via .. specifiers in the album parameter, and the target filename in the pic parameter.

Ссылки

http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0092.html
Exploit
Patch
http://www.iss.net/security_center/static/11429.php
http://www.securityfocus.com/archive/1/312966
Exploit
Patch
http://www.securityfocus.com/bid/6929
Exploit
Patch
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0092.html
Exploit
Patch
http://www.iss.net/security_center/static/11429.php
http://www.securityfocus.com/archive/1/312966
Exploit
Patch
http://www.securityfocus.com/bid/6929
Exploit
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wihphoto:wihphoto:0.86:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.06466

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5pp8-4vfm-hgxf

github

почти 4 года назад

Directory traversal vulnerability in sendphoto.php in WihPhoto 0.86 allows remote attackers to read arbitrary files via .. specifiers in the album parameter, and the target filename in the pic parameter.

EPSS

Процентиль: 91%

0.06466

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other