7.6 High
AI Score
Confidence
Low
0.011 Low
EPSS
Percentile
84.7%
Directory traversal vulnerability in index.php in BNCwi 1.04 and earlier allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the newlanguage parameter.
secunia.com/advisories/32981
www.securityfocus.com/bid/32644
www.exploit-db.com/exploits/7345