6.7 Medium
AI Score
Confidence
Low
0.018 Low
EPSS
Percentile
88.2%
Directory traversal vulnerability in upgrade/index.php in OpenGoo 1.1, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via a … (dot dot) in the form_data[script_class] parameter.
osvdb.org/51635
www.securityfocus.com/bid/33421
www.exploit-db.com/exploits/7863