Описание
Absolute path traversal vulnerability in nukestyles.com viewpage.php addon for PHP-Nuke allows remote attackers to read arbitrary files via a full pathname in the file parameter. NOTE: This was originally reported as an issue in PHP-Nuke 6.5, but this is an independent addon.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:nukestyles:viewpage:*:*:*:*:*:*:*:*
cpe:2.3:a:phpnuke:nukestyles_viewpage_module:*:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04673
Низкий
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Absolute path traversal vulnerability in nukestyles.com viewpage.php addon for PHP-Nuke allows remote attackers to read arbitrary files via a full pathname in the file parameter. NOTE: This was originally reported as an issue in PHP-Nuke 6.5, but this is an independent addon.
EPSS
Процентиль: 89%
0.04673
Низкий
5 Medium
CVSS2
Дефекты
CWE-22