CVE-2012-4997

2012-09-1919:00:00

mitre

www.cve.org

7.1 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.9%

JSON

Directory traversal vulnerability in acp/index.php in AneCMS allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the p parameter.

References

www.exploit-db.com/exploits/18559

www.securityfocus.com/bid/52272

exchange.xforce.ibmcloud.com/vulnerabilities/73682