CVE-2008-0458

2008-01-2515:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.9%

JSON

Directory traversal vulnerability in function/sources.php in SLAED CMS 2.5 Lite allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the newlang parameter to index.php.

References

www.securityfocus.com/bid/27426

www.vupen.com/english/advisories/2008/0308

exchange.xforce.ibmcloud.com/vulnerabilities/39897

www.exploit-db.com/exploits/4975