Описание
Directory traversal vulnerability in user_portal.php in the Dokeos E-Learning System 1.8.5 on Windows allows remote attackers to include and execute arbitrary local files via a ..\ (dot dot backslash) in the include parameter.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:dokeos:e-learning_system:1.8.5:*:windows:*:*:*:*:*
EPSS
Процентиль: 92%
0.07829
Низкий
7.5 High
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
почти 4 года назад
Directory traversal vulnerability in user_portal.php in the Dokeos E-Learning System 1.8.5 on Windows allows remote attackers to include and execute arbitrary local files via a ..\ (dot dot backslash) in the include parameter.
EPSS
Процентиль: 92%
0.07829
Низкий
7.5 High
CVSS2
Дефекты
CWE-22