7.1 High
AI Score
Confidence
Low
0.053 Low
EPSS
Percentile
93.1%
Directory traversal vulnerability in inc/lib/language.lib.php in Claroline before 1.8.6 allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the language parameter.
osvdb.org/38987
secunia.com/advisories/26685
www.claroline.net/forum/viewtopic.php?t=13533
www.claroline.net/wiki/index.php/Changelog_1.8.x#Security
www.securityfocus.com/bid/25521
www.vupen.com/english/advisories/2007/3045