CVE-2009-1653

2009-05-1618:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.013 Low

EPSS

Percentile

86.1%

JSON

Directory traversal vulnerability in examples/tbs_us_examples_0view.php in TinyButStrong 3.4.0 allows remote attackers to read arbitrary files via a … (dot dot) in the script parameter.

References

www.vupen.com/english/advisories/2009/1304

exchange.xforce.ibmcloud.com/vulnerabilities/50506

www.exploit-db.com/exploits/8667