Описание
smanga 3.2.7 does not filter the file parameter at the PHP/get file flow.php interface, resulting in a path traversal vulnerability that can cause arbitrary file reading.
EPSS
Процентиль: 68%
0.00558
Низкий
7.5 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.5
github
больше 1 года назад
smanga 3.2.7 does not filter the file parameter at the PHP/get file flow.php interface, resulting in a path traversal vulnerability that can cause arbitrary file reading.
EPSS
Процентиль: 68%
0.00558
Низкий
7.5 High
CVSS3
Дефекты
CWE-22