6.6 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
69.2%
Directory traversal vulnerability in X2Engine X2CRM before 3.5 allows remote authenticated administrators to include and execute arbitrary local files via a … (dot dot) in the file parameter to index.php/admin/translationManager.