NVD

Id
46445  
Name
CVE-2012-5242  
Description
Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter in a get_template action.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2014-10-21  
Modified Date
2014-10-24  
Seq
2012-5242  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
232847 46445 CVE-2012-5242 23573  View
232848 46445 CVE-2012-5242 https://www.htbridge.com/advisory/HTB23118  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
30610 JVNDB-2012-006318 Banana Dance の functions/suggest.php におけるディレクトリトラバーサルの脆弱性 Banana Dance の functions/suggest.php には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2012-5242 58480 CVE-2012-5242 46445 6.8 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-006318.html 2012-12-19 2014-10-27 View