mirror of
https://github.com/0xMarcio/cve.git
synced 2026-05-20 08:04:44 +02:00
0xMarcio
730 B
730 B
CVE-2008-0158
Description
Directory traversal vulnerability in index.php in Shop-Script 2.0 and possibly other versions allows remote attackers to read arbitrary files via a .. (dot dot) in the aux_page parameter.
POC
Reference
- http://packetstormsecurity.org/0801-exploits/shopscript-disclose.txt
- https://www.exploit-db.com/exploits/4855
Github
No PoCs found on GitHub currently.