Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-10037

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2014-10037
Last Modified 14 Jan 2015 03:10:58
Published 13 Jan 2015 10:59:47
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-10037

Summary

Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote attackers to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.

Vulnerable Systems

Application

  • Domphp 0.83


References

XF - domphp-index-dir-traversal(90582)

EXPLOIT-DB - 30865

OSVDB - 102204


Last Updated: 27 May 2016 11:07:32