CyberSec.Space Logo
CVEブラウザに戻る

CVE-2019-9064

MEDIUM
5.3
CVSS Severity Score
EPSS Score0.1270%
EPSS Percentile43.72th
Published2019年2月23日
Last Modified2024年11月21日

Vulnerability Description

PHP Scripts Mall Cab Booking Script 1.0.3 allows Directory Traversal into the parent directory of a jpg or png file.

Affected Platforms (CPE)

📦
Cab Booking Script Project

Cab Booking Script

= 1.0.3

References & Advisories

🔗 https://hackingvila.wordpress.com/2019/02/18/directory-traveler-or-path-traveler-vulnerability-in-cab-booking-script-php-script-mall/
🔗 https://hackingvila.wordpress.com/2019/02/18/directory-traveler-or-path-traveler-vulnerability-in-cab-booking-script-php-script-mall/

関連する脆弱性情報

CVE-2017-176019.8

Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter.

CVE-2019-1121010.0

The server component of TIBCO Software Inc.'s TIBCO Enterprise Runtime for R - Server Edition, and TIBCO Spotfire Analytics Platfo...

CVE-2019-548510.0

NPM package gitlabhook version 0.0.17 is vulnerable to a Command Injection vulnerability. Arbitrary commands can be injected throu...

CVE-2019-1664910.0

On Supermicro H11, H12, M11, X9, X10, and X11 products, a combination of encryption and authentication problems in the virtual med...