CVE-2005-0214

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in Simple PHP Blog (SPHPBlog) 0.3.7c allows remote attackers to read or create arbitrary files via a .. (dot dot) in the entry parameter.

Ссылки

http://archives.neohapsis.com/archives/fulldisclosure/2005-01/0210.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=110512850603989&w=2
http://www.securityfocus.com/bid/12193
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/18802
http://archives.neohapsis.com/archives/fulldisclosure/2005-01/0210.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=110512850603989&w=2
http://www.securityfocus.com/bid/12193
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/18802

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:alexander_palmo:simple_php_blog:0.3.7c:*:*:*:*:*:*:*

EPSS

Процентиль: 79%

0.01302

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-5hm9-x5vh-9wp6

github

почти 4 года назад