CVE-2008-0812

2008-02-1901:00:00

mitre

www.cve.org

7.3 High

AI Score

Confidence

Low

0.023 Low

EPSS

Percentile

89.7%

JSON

Directory traversal vulnerability in DMS/index.php in BanPro DMS 1.0 allows remote attackers to include and execute arbitrary files via a … (dot dot) in the action parameter.

References

secunia.com/advisories/28992

securityreason.com/securityalert/3666

www.securityfocus.com/archive/1/488271/100/0/threaded

www.securityfocus.com/bid/27831