7.2 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
56.8%
In Webgalamb through 7.0, a system/ajax.php “wgmfile restore” directory traversal vulnerability could lead to arbitrary code execution by authenticated administrator users, because PHP files are restored under the document root directory.
packetstormsecurity.com/files/151017/Webgalamb-Information-Disclosure-XSS-CSRF-SQL-Injection.html
seclists.org/fulldisclosure/2019/Jan/15