CVE-2011-3837

2011-12-2419:00:00

flexera

www.cve.org

6.6 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.3%

JSON

Directory traversal vulnerability in blog_system/data_functions.php in Wuzly 2.0 allows remote attackers to read arbitrary files via a … (dot dot) in the preview parameter to index.php.

References

osvdb.org/77912

secunia.com/advisories/46163

secunia.com/secunia_research/2011-87/

exchange.xforce.ibmcloud.com/vulnerabilities/71903