Doorgets : Security Vulnerabilities, CVEs, Published In 2018 (Directory traversal)
doorGets 7.0 allows remote attackers to write to arbitrary files via directory traversal, as demonstrated by a dg-user/?controller=theme&action=edit&name=doorgets&file=../../1.txt%00 URI with content in the theme_content_nofi parameter.
Max CVSS
7.5
EPSS Score
0.22%
Published
2018-12-11
Updated
2018-12-31
1 vulnerabilities found