Description
Multiple directory traversal vulnerabilities in WebFrame 0.76 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) currentmod and (2) LANG parameters to mod/index.php.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ahmadbady · textwebappsphp
https://www.exploit-db.com/exploits/8025
References (2)
Core 2
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/8025
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/33701
Scores
EPSS
0.0290
EPSS Percentile
86.4%
Details
CWE
CWE-22
Status
published
Products (1)
webframe/webframe
0.76
Published
Feb 11, 2009
Tracked Since
Feb 18, 2026