Vulnerability Details CVE-2008-2782
Multiple directory traversal vulnerabilities in OtomiGenX 2.2 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter to (1) library_rss.php and (2) rss.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 83.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://sourceforge.net/forum/forum.php?forum_id=834373
- http://www.vupen.com/english/advisories/2008/1678/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42665
- https://www.exploit-db.com/exploits/5680
- http://sourceforge.net/forum/forum.php?forum_id=834373
- http://www.vupen.com/english/advisories/2008/1678/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42665
- https://www.exploit-db.com/exploits/5680