Описание
Directory traversal vulnerability in class2.php in e107 0.7.5 and earlier allows remote attackers to read and execute PHP code in arbitrary files via ".." sequences in the e107language_e107cookie cookie to gsitemap.php.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:e107:e107:0.7.5:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04697
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in class2.php in e107 0.7.5 and earlier allows remote attackers to read and execute PHP code in arbitrary files via ".." sequences in the e107language_e107cookie cookie to gsitemap.php.
EPSS
Процентиль: 89%
0.04697
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other