Siteatschool : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in starnet/editors/htmlarea/popups/images.php in Site@School (S@S) 2.4.02 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the dir parameter.
Max CVSS
2.6
EPSS Score
0.66%
Published
2006-09-21
Updated
2017-10-19
1 vulnerabilities found