CVE-2013-3295

2014-12-3002:00:00

mitre

www.cve.org

7 High

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

Directory traversal vulnerability in install/popup.php in Exponent CMS before 2.2.0 RC1 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the page parameter.

References

www.htbridge.com/advisory/HTB23154