Web-cp : Security Vulnerabilities, CVEs,
Absolute path traversal vulnerability in sendfile.php in web-cp 0.5.7, when register_globals is enabled, allows remote attackers to read arbitrary files via a full pathname in the filelocation parameter.
Max CVSS
7.1
EPSS Score
1.58%
Published
2009-01-28
Updated
2017-09-29
1 vulnerabilities found