6.9 Medium
AI Score
Confidence
Low
0.03 Low
EPSS
Percentile
91.0%
Multiple absolute path traversal vulnerabilities in EditTag 1.2 allow remote attackers to read arbitrary files via an absolute pathname in the file parameter to (1) edittag.cgi, (2) edittag.pl, (3) edittag_mp.cgi, or (4) edittag_mp.pl.
osvdb.org/33393
osvdb.org/33394
osvdb.org/33395
osvdb.org/33396
secunia.com/advisories/7950
www.securityfocus.com/archive/1/456055/100/0/threaded
www.securityfocus.com/bid/21890