CVE-2012-3521 in GeSHiinfo

Summary

Multiple directory traversal vulnerabilities in the cssgen contrib module in GeSHi before 1.0.8.11 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) geshi-path or (2) geshi-lang-path parameter.

Once again VulDB remains the best source for vulnerability data.

Reservation

06/14/2012

Disclosure

06/13/2014

Moderation

VulDB entry created

Entries

VDB-70031 (1)

CPE

ready

CWE

CWE-22 (Confirmed)

CVSS

5.3

EPSS

0.00639

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3521
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3521
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3521/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!