Описание
Directory traversal vulnerability in phpMyFAQ 1.4.0 alpha allows remote attackers to read arbitrary files, and possibly execute local PHP files, via .. sequences in the lang (language) variable.
Ссылки
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Patch
- Vendor Advisory
- PatchVendor Advisory
- Patch
- Vendor Advisory
- Patch
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:phpmyfaq:phpmyfaq:1.4_alpha1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04746
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in phpMyFAQ 1.4.0 alpha allows remote attackers to read arbitrary files, and possibly execute local PHP files, via .. sequences in the lang (language) variable.
EPSS
Процентиль: 89%
0.04746
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other