CVE-2008-2782

2008-06-1920:00:00

mitre

www.cve.org

7.3 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.5%

JSON

Multiple directory traversal vulnerabilities in OtomiGenX 2.2 allow remote attackers to include and execute arbitrary local files via a … (dot dot) in the lang parameter to (1) library_rss.php and (2) rss.php.

References

sourceforge.net/forum/forum.php?forum_id=834373

www.vupen.com/english/advisories/2008/1678/references

exchange.xforce.ibmcloud.com/vulnerabilities/42665

www.exploit-db.com/exploits/5680