Vulnerability Details CVE-2012-5192
Directory traversal vulnerability in gmap/view_overlay.php in Bitweaver 2.8.1 and earlier allows remote attackers to read arbitrary files via "''%2F" (dot dot encoded slash) sequences in the overlay_type parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.515
EPSS Ranking 97.8%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2012-5192
-
cpe:2.3:a:bitweaver:bitweaver:-
-
cpe:2.3:a:bitweaver:bitweaver:1.1
-
cpe:2.3:a:bitweaver:bitweaver:1.1.1_beta
-
cpe:2.3:a:bitweaver:bitweaver:1.2.1
-
cpe:2.3:a:bitweaver:bitweaver:1.3
-
cpe:2.3:a:bitweaver:bitweaver:1.3.1
-
cpe:2.3:a:bitweaver:bitweaver:2.0.0
-
cpe:2.3:a:bitweaver:bitweaver:2.0.2
-
cpe:2.3:a:bitweaver:bitweaver:2.5
-
cpe:2.3:a:bitweaver:bitweaver:2.6
-
cpe:2.3:a:bitweaver:bitweaver:2.7
-
cpe:2.3:a:bitweaver:bitweaver:2.8.1