1 results (0.003 seconds)

CVSS: 5.8EPSS: 1%CPEs: 1EXPL: 2

Directory traversal vulnerability in phpMyClub 0.0.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page_courante parameter to the top-level URI. Vulnerabilidad de salto de directorio en phpMyClub 0.0.1 permite a atacantes remotos incluir y ejecutar archivos locales a su elección mediante un .. (punto punto) en el parámetro page_courante de la URI de nivel superior. • https://www.exploit-db.com/exploits/5000 http://www.securityfocus.com/bid/27480 http://www.vupen.com/english/advisories/2008/0350 https://exchange.xforce.ibmcloud.com/vulnerabilities/40007 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •