cbcvebase.
CVE-2009-5067
published 2012-10-10

CVE-2009-5067: Directory traversal vulnerability in html2ps before 1.0b6 allows remote attackers to read arbitrary files via a .. (dot dot) in the "include file" SSI…

PriorityP333medium4.3CVSS 2.0
AVNACMAuNCPINAN
EXPLOIT
EPSS
7.63%
93.8th percentile
Directory traversal vulnerability in html2ps before 1.0b6 allows remote attackers to read arbitrary files via a .. (dot dot) in the "include file" SSI directive. NOTE: this issue only might be a vulnerability in limited scenarios, such as if html2ps is invoked by a web application, or if a user-assisted attacker provides filenames whose contents could cause a denial of service, such as certain devices.

Affected

7 ranges
VendorProductVersion rangeFixed in
debianhtml2ps< html2ps 1.0b7-1 (bookworm)html2ps 1.0b7-1 (bookworm)
html2ps_projecthtml2ps<= 1.0
html2ps_projecthtml2ps
html2ps_projecthtml2ps>= 0 < 1.0b7-11.0b7-1
html2ps_projecthtml2ps>= 0 < 1.0b7-11.0b7-1
html2ps_projecthtml2ps>= 0 < 1.0b7-11.0b7-1
html2ps_projecthtml2ps>= 0 < 1.0b7-11.0b7-1

CVSS provenance

nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:P/I:N/A:N
osv4.3MEDIUM
vendor_debian4.3LOW
vendor_redhat4.3MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.