Description
Multiple directory traversal vulnerabilities in comments.php in Super Simple Blog Script 2.5.4 allow remote attackers to overwrite, include, and execute arbitrary local files via the entry parameter.
Exploits (1)
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/51805
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9179
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/35859
Scores
EPSS
0.0197
EPSS Percentile
83.6%
Details
CWE
CWE-22
Status
published
Products (1)
supersimple/super_simple_blog_script
2.5.4
Published
Jul 20, 2009
Tracked Since
Feb 18, 2026