Page 5 of 21 results (0.005 seconds)
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-2150
https://notcve.org/view.php?id=CVE-2017-2150
Directory traversal vulnerability in Booking Calendar version 7.0 and earlier allows remote attackers to read arbitrary files via specially crafted captcha_chalange parameter. Vulnerabilidad de salto de directorio en Booking Calendar versioes 7.0 y anteriores, que permitiría a un atacante remoto leer ficheros arbitrarios a través de un parámetro captcha_chalange especialmente manipulado. • http://jvn.jp/en/jp/JVN18739672/index.html http://wpbookingcalendar.com/changelog • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •