CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-10030

A vulnerability has been found in SUKOHI Surpass and classified as critical. This vulnerability affects unknown code of the file src/Sukohi/Surpass/Surpass.php. The manipulation of the argument dir leads to pathname traversal. Upgrading to version 1.0.0 is able to address this issue. The patch is identified as d22337d453a2a14194cdb02bf12cdf9d9f827aa7. It is recommended to upgrade the affected component. VDB-217642 is the identifier assigned to this vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.2%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 5.2

References

https://github.com/SUKOHI/Surpass/commit/d22337d453a2a14194cdb02bf12cdf9d9f827aa7
https://github.com/SUKOHI/Surpass/releases/tag/1.0.0
https://vuldb.com/?ctiid.217642
https://vuldb.com/?id.217642
https://github.com/SUKOHI/Surpass/commit/d22337d453a2a14194cdb02bf12cdf9d9f827aa7
https://github.com/SUKOHI/Surpass/releases/tag/1.0.0
https://vuldb.com/?ctiid.217642
https://vuldb.com/?id.217642

Products affected by CVE-2015-10030

Surpass Project » Surpass » Version: Any

cpe:2.3:a:surpass_project:surpass:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-10030

Products

Pricing

Contact Us