Описание
Multiple directory traversal vulnerabilities in AR Web Content Manager (AWCM) 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. (dot dot) in the (1) awcm_theme or (2) awcm_lang cookie to (a) index.php or (b) header.php.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:awcm-cms:ar_web_content_manager:2.2:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02138
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22
Связанные уязвимости
github
больше 3 лет назад
Multiple directory traversal vulnerabilities in AR Web Content Manager (AWCM) 2.2 allow remote attackers to read arbitrary files and possibly have other unspecified impact via a .. (dot dot) in the (1) awcm_theme or (2) awcm_lang cookie to (a) index.php or (b) header.php.
EPSS
Процентиль: 84%
0.02138
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-22