6.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
65.0%
Directory traversal vulnerability in download.php in Sisfo Kampus 0.8 allows remote attackers to list arbitrary directories via an absolute pathname in the dir parameter.
www.securityfocus.com/bid/21294
www.exploit-db.com/exploits/2847