Описание
Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument.
Ссылки
- URL Repurposed
- Exploit
- URL Repurposed
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:oscommerce:oscommerce:2.1:*:*:*:*:*:*:*
cpe:2.3:a:oscommerce:oscommerce:2.2_cvs:*:*:*:*:*:*:*
cpe:2.3:a:oscommerce:oscommerce:2.2_ms1:*:*:*:*:*:*:*
cpe:2.3:a:oscommerce:oscommerce:2.2_ms2:*:*:*:*:*:*:*
cpe:2.3:a:oscommerce:oscommerce:2.2_ms3:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06899
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument.
EPSS
Процентиль: 91%
0.06899
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other