showCode.php in xml2owl 0.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter.
Max CVSS
6.8
EPSS Score
2.44%
Published
2008-01-04
Updated
2017-09-29
Directory traversal vulnerability in filedownload.php in xml2owl 0.1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
Max CVSS
5.0
EPSS Score
3.16%
Published
2007-12-13
Updated
2017-09-29
2 vulnerabilities found