We found results for “”
WS-2021-0644
Date: August 27, 2021
The ajax.php modname parameter is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server. This enables an attacker to access sensitive files
Language: PHP
Severity Score
Severity Score
Weakness Type (CWE)
Path Traversal
CWE-22CVSS v3.1
Base Score: |
|
---|---|
Attack Vector (AV): | NETWORK |
Attack Complexity (AC): | LOW |
Privileges Required (PR): | NONE |
User Interaction (UI): | NONE |
Scope (S): | UNCHANGED |
Confidentiality (C): | HIGH |
Integrity (I): | NONE |
Availability (A): | NONE |