Thomastsoi » Quirex : Security Vulnerabilities, CVEs,
Absolute path traversal vulnerability in convert.cgi in Quirex 2.0.2 and earlier allows remote attackers to read arbitrary files, and possibly execute arbitrary code, via the (1) quiz_head, (2) quiz_foot, and (3) template variables.
Max CVSS
5.0
EPSS Score
4.92%
Published
2006-02-19
Updated
2018-10-18
1 vulnerabilities found