Directory traversal vulnerability in admin/admin_xs.php in eXtreme Styles module (XS-Mod) 2.3.1 and 2.4.0 for phpBB allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the phpEx parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
1.17%
Published
2008-03-25
Updated
2017-09-29
1 vulnerabilities found