Qooxdoo : Security Vulnerabilities, CVEs, CVSS score >= 5
Directory traversal vulnerability in framework/source/resource/qx/test/part/delay.php in QooxDoo 1.3 and possibly other versions, as used in eyeOS 2.2 and 2.3, and possibly other products allows remote attackers to read arbitrary files via ..%2f (encoded dot dot) sequences in the file parameter.
Max CVSS
5.0
EPSS Score
4.31%
Published
2011-04-18
Updated
2017-08-17
1 vulnerabilities found