Описание
Multiple directory traversal vulnerabilities in Pyrophobia 2.1.3.1 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) act or (2) pid parameter to the top-level URI (index.php), or the (3) action parameter to admin/index.php. NOTE: some of these details are obtained from third party information.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:pyrophobia:pyrophobia:2.1.3.1:*:*:*:*:*:*:*
EPSS
Процентиль: 89%
0.04583
Низкий
5 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Multiple directory traversal vulnerabilities in Pyrophobia 2.1.3.1 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) act or (2) pid parameter to the top-level URI (index.php), or the (3) action parameter to admin/index.php. NOTE: some of these details are obtained from third party information.
EPSS
Процентиль: 89%
0.04583
Низкий
5 Medium
CVSS2
Дефекты
CWE-22