7.1 High
AI Score
Confidence
Low
9.4 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:C/A:N
0.02 Low
EPSS
Percentile
88.6%
Directory traversal vulnerability in edit.php in pheap allows remote attackers to read and modify arbitrary files via a … (dot dot) in the filename parameter.