0.002 Low
EPSS
Percentile
56.8%
In Webgalamb through 7.0, a system/ajax.php βwgmfile restoreβ directory traversal vulnerability could lead to arbitrary code execution by authenticated administrator users, because PHP files are restored under the document root directory.
packetstormsecurity.com/files/151017/Webgalamb-Information-Disclosure-XSS-CSRF-SQL-Injection.html
seclists.org/fulldisclosure/2019/Jan/15