Sp1d3rL1/PHPVibe_vulnerability_Directory-Traversal

Releases0

Stars1

Description about PHPVibeCms' vulnerability

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-39171 ↗	Jul 9, 2024Tuesday, 9 July 2024, 17:15	9.8 CRITICAL	—
Directory Travel in PHPVibe v11.0.46 due to incomplete blacklist checksums and directory checks, which can lead to code execution via writing specific statements to .htaccess and code to a file with a .png suffix.