6.9 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.4%
Multiple directory traversal vulnerabilities in ZeroBoard 4.1pl5 and earlier allow remote attackers to read arbitrary files via a … (dot dot) in the _zb_path parameter to (1) _head.php or (2) outlogin.php, or the dir parameter to (3) write.php.
marc.info/?l=bugtraq&m=110565373407474&w=2
securitytracker.com/id?1012884
www.securityfocus.com/bid/12257
exchange.xforce.ibmcloud.com/vulnerabilities/18891