Описание
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. (dot dot) in the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php, different vectors than CVE-2006-6384.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:unverse.net:abitwhizzy:*:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.06695
Низкий
2.6 Low
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Multiple directory traversal vulnerabilities in aBitWhizzy allow remote attackers to list arbitrary directories via a .. (dot dot) in the d parameter to (1) whizzery/whizzypic.php or (2) whizzery/whizzylink.php, different vectors than CVE-2006-6384.
EPSS
Процентиль: 91%
0.06695
Низкий
2.6 Low
CVSS2
Дефекты
CWE-22