Directory traversal

2009-05-2019:30:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

79.6%

JSON

Directory traversal vulnerability in bom.php in MyPic 2.1 allows remote attackers to list files in arbitrary directories via a … (dot dot) in the dir parameter.

CPENameOperatorVersion
mypiceq2.1

CPE	Name	Operator	Version
	mypic	eq	2.1

References

hi.baidu.com/hirfire/blog/item/c3c0f6dda3ca47d18d10291a.html

secunia.com/advisories/35092

www.osvdb.org/54565

www.securityfocus.com/bid/35030

exchange.xforce.ibmcloud.com/vulnerabilities/50621