cb
cvebase
.
~
/
products
/
xoops
/
uploader
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
xoops
/
Xoops Uploader
Xoops Uploader vulnerabilities
1 known vulnerability affecting
xoops/uploader
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2008-7178
P3
HIGH
CVSS 7.5
PoC
v1.1
2009-09-08
CVE-2008-7178 [HIGH] CWE-22 CVE-2008-7178: Directory traversal vulnerability in Uploader module 1.1 for XOOPS allows remote attackers to read a Directory traversal vulnerability in Uploader module 1.1 for XOOPS allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter in a downloadfile action to index.php.
nvd
Xoops Uploader vulnerabilities | cvebase