CVE-2001-1299

2002-06-2504:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

High

0.015 Low

EPSS

Percentile

87.2%

JSON

Zorbat Zorbstats PHP script before 0.9 allows remote attackers to include arbitrary files from remote web sites via an HTTP request that sets the includedir variable.

References

archives.neohapsis.com/archives/bugtraq/2001-10/0012.html

www.come.to/zorbat/

www.iss.net/security_center/static/7215.php

www.kb.cert.org/vuls/id/847803

www.kb.cert.org/vuls/id/JARL-53RJKV

www.securityfocus.com/bid/3386