CVE-2010-4931

2022-10-0316:21:04

mitre

www.cve.org

php-fusion

maincore.php

directory traversal

7.1 High

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

JSON

Directory traversal vulnerability in maincore.php in PHP-Fusion allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the folder_level parameter. NOTE: this issue has been disputed by a reliable third party

References

attrition.org/pipermail/vim/2010-August/002391.html

www.exploit-db.com/exploits/14647

www.securityfocus.com/bid/42456