Описание
Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter. NOTE: CVE disputes this vulnerability because l is validated by ctype_alpha before use
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:wikyblog:wikyblog:1.3.2:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00601
Низкий
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
** DISPUTED ** Directory traversal vulnerability in WBmap.php in WikyBlog 1.3.2 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the l parameter. NOTE: CVE disputes this vulnerability because l is validated by ctype_alpha before use.
EPSS
Процентиль: 69%
0.00601
Низкий
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other