Indymedia : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in index.php in Oscailt 3.3, when Use Friendly URL's is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the obj_id parameter.
Max CVSS
5.1
EPSS Score
2.20%
Published
2009-12-31
Updated
2017-08-17
1 vulnerabilities found