CVE-2017-5539 in b2evolutionजानकारी

सारांश

द्वारा MITRE

The patch for directory traversal (CVE-2017-5480) in b2evolution version 6.8.4-stable has a bypass vulnerability. An attacker can use ..\/ to bypass the filter rule. Then, this attacker can exploit this vulnerability to delete or read any files on the server. It can also be used to determine whether a file exists.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

आरक्षित करना

19/01/2017

प्रकटीकरण

23/01/2017

प्रविष्टि

VDB-95792

EPSS

0.04175

गतिविधियाँ

बहुत कम

क्षेत्र

Agriculture, Hostingprovider, ...

स्रोत

Do you want to use VulDB in your project?

Use the official API to access entries easily!