Justin Hagstrom » Autoindex Php Script : Security Vulnerabilities, CVEs, CVSS score >= 5
classes/Url.php in Justin Hagstrom AutoIndex PHP Script before 2.2.4 allows remote attackers to cause a denial of service (CPU and memory consumption) via a %00 sequence in the dir parameter to index.php, which triggers an erroneous "recursive calculation."
Max CVSS
7.8
EPSS Score
8.20%
Published
2007-11-15
Updated
2018-10-15
1 vulnerabilities found