7.3 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.0%
Multiple directory traversal vulnerabilities in Ignition 1.2, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a … (dot dot) in the blog parameter to (1) comment.php and (2) view.php.
osvdb.org/61225
osvdb.org/61226
packetstormsecurity.org/0912-exploits/ignition-lfi.txt
secunia.com/advisories/37836
www.exploit-db.com/exploits/10569
exchange.xforce.ibmcloud.com/vulnerabilities/54940