CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Directory traversal vulnerability in staff/app/common.inc.php in Phpkobo Short URL 1.01, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the LANGCODE parameter...

6.8CVSS7.6AI score0.01919EPSS

Exploits1References4Affected Software1

CVE•added 2010/03/23 5:0 p.m.•37 views

CVE-2010-1057

Phpkobo AdFreely (aka Ad Board Script) 1.01 is affected by directory traversal via LANG_CODE in common.inc.php, enabling remote inclusion/execution of local files when magic_quotes_gpc is disabled. The vulnerability affects multiple paths (codelib/cfg/, codelib/sys/, staff/, staff/app/, staff/fil...

6.8CVSS7.5AI score0.04623EPSS

Exploits1References7Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by