SecBoard
Zurück zur CVE-Übersicht

CVE-2009-2180

MEDIUM(5.0)

AV:N/AC:L/Au:N/C:P/I:N/A:N

Risk Signal Score14/100 — NIEDRIG
  • CVSS 5 — Mittel

EPSS-Score

6%

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

5

Technische Schwere

Beschreibung

Multiple directory traversal vulnerabilities in upfiles/index.php in Pc4 Uploader 10.0 and earlier allow remote attackers to read arbitrary files via (1) a .. (dot dot) or (2) absolute path in the file parameter.

Referenzen