漏洞详情: CVE-2008-0521

漏洞标题
NVD 暂无描述信息
来源:NVD
Bubbling Library 多个目录遍历漏洞
来源:CNNVD
漏洞描述
Multiple directory traversal vulnerabilities in Bubbling Library 1.32 allow remote attackers to read arbitrary files via a .. (dot dot) in the uri parameter to dispatcher.php in (1) examples/dispatcher/framework/, (2) examples/dispatcher/, (3) examples/wizard/, and (4) PHP/, different vectors than CVE-2008-0545.
来源:NVD
Bubbling Library 1.32中存在多个目录遍历漏洞。远程攻击者借助dispatcher.php中URI参数中的".."读取任意文件。dispatcher.php在以下目录中存在(1)examples/dispatcher/framework/,(2)examples/dispatcher/,(3)examples/wizard/和(4)PHP/。
来源:CNNVD
"Bubbling Library 1.32中的多个目录遍历漏洞允许远程攻击者通过(1) examples/dispatcher/framework/, (2) examples/dispatcher/, (3) examples/wizard/, and (4) PHP/中的..(dot dot)在dispatcher.php参数中访问任意文件,与CVE-2008-0545不同 vector。"
来源:神龙机器人
漏洞评分(CVSS)
NVD 暂无评分
来源:NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
来源:神龙机器人, 准确率:N/A
漏洞类别
NVD 暂无漏洞类别信息
来源:NVD
路径遍历
来源:CNNVD
相关链接