CVE-2009-3824

2009-10-2810:00:00

mitre

www.cve.org

7.2 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.7%

JSON

Directory traversal vulnerability in include/processor.php in Greenwood PHP Content Manager 0.3.2 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the content_path parameter.

References

www.exploit-db.com/exploits/9156

exchange.xforce.ibmcloud.com/vulnerabilities/51737