AI Score
Confidence
High
EPSS
Percentile
82.4%
Directory traversal vulnerability in pages/showblog.php in LnBlog 0.9.0 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the plugin parameter.
secunia.com/advisories/32032
securityreason.com/securityalert/4481
www.securityfocus.com/bid/31459
www.exploit-db.com/exploits/6601