Описание
Directory traversal vulnerability in the installation file (sql/install-0.9.7.php) in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the adodbpath parameter.
Ссылки
- Exploit
- PatchVendor Advisory
- Exploit
- Exploit
- PatchVendor Advisory
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:flyspray:flyspray:0.9.7:*:*:*:*:*:*:*
EPSS
Процентиль: 93%
0.10683
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
ubuntu
почти 20 лет назад
Directory traversal vulnerability in the installation file (sql/install-0.9.7.php) in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the adodbpath parameter.
debian
почти 20 лет назад
Directory traversal vulnerability in the installation file (sql/instal ...
github
больше 3 лет назад
Directory traversal vulnerability in the installation file (sql/install-0.9.7.php) in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the adodbpath parameter.
EPSS
Процентиль: 93%
0.10683
Средний
5 Medium
CVSS2
Дефекты
NVD-CWE-Other