CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
90.6%
Directory traversal vulnerability in index.php in CoolPHP 1.0-stable allows remote attackers to access arbitrary files and execute local PHP scripts via a … (dot dot) in the op parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
coolphp | coolphp_web_portal | 1.0_stable | cpe:2.3:a:coolphp:coolphp_web_portal:1.0_stable:*:*:*:*:*:*:* |