Описание
Directory Traversal (Local File Inclusion) vulnerability in Tikit (now Advanced) eMarketing platform 6.8.3.0 allows a remote attacker to read arbitrary files and obtain sensitive information via a crafted payload to the filename parameter to the OpenLogFile endpoint.
Ссылки
- Exploit
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:oneadvanced:tikit_emarketing:6.8.3.0:*:*:*:*:*:*:*
EPSS
Процентиль: 0%
0.00006
Низкий
5.1 Medium
CVSS3
Дефекты
CWE-98
Связанные уязвимости
CVSS3: 5.1
github
11 месяцев назад
Directory Traversal (Local File Inclusion) vulnerability in Tikit (now Advanced) eMarketing platform 6.8.3.0 allows a remote attacker to read arbitrary files and obtain sensitive information via a crafted payload to the filename parameter to the OpenLogFile endpoint.
EPSS
Процентиль: 0%
0.00006
Низкий
5.1 Medium
CVSS3
Дефекты
CWE-98