Total vulnerabilities in the database
Directory traversal vulnerability in index.php in (1) WSN Forum 4.1.43 and earlier, (2) Gallery 4.1.30 and earlier, (3) Knowledge Base (WSNKB) 4.1.36 and earlier, (4) Links 4.1.44 and earlier, and possibly (5) Classifieds before 4.1.30 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the TID parameter, as demonstrated by uploading a .jpg file containing PHP sequences.
| Software | From | Fixed in |
|---|---|---|
| wsn / links | 4.1.4 | 4.1.4.x |
| wsn / links | 4.0.33 | 4.0.33.x |
| wsn / links | 4.1.3 | 4.1.3.x |
| wsn / links | 4.1.35 | 4.1.35.x |
| wsn / links | 4.0.4 | 4.0.4.x |
| wsn / links | 4.0.30 | 4.0.30.x |
| wsn / links | 4.0.39 | 4.0.39.x |
| wsn / links | 4.1.40 | 4.1.40.x |
| wsn / links | 4.1.2 | 4.1.2.x |
| wsn / links | 4.1.10 | 4.1.10.x |
| wsn / links | 4.0.22 | 4.0.22.x |
| wsn / links | 4.1.30 | 4.1.30.x |
| wsn / links | 4.1.31 | 4.1.31.x |
| wsn / links | 4.1.9 | 4.1.9.x |
| wsn / links | 4.0.1 | 4.0.1.x |
| wsn / links | 4.0.28 | 4.0.28.x |
| wsn / links | 4.1.43 | 4.1.43.x |
| wsn / links | 4.1.32 | 4.1.32.x |
| wsn / links | 4.0.34 | 4.0.34.x |
| wsn / links | 4.0.9 | 4.0.9.x |
| wsn / links | 4.0.6 | 4.0.6.x |
| wsn / gallery | - | 4.1.30.x |
| wsn / links | 4.1.29 | 4.1.29.x |
| wsn / links | 4.0.12 | 4.0.12.x |
| wsn / links | 4.1.7 | 4.1.7.x |
| wsn / links | 4.0.20 | 4.0.20.x |
| wsn / links | 4.1.24 | 4.1.24.x |
| wsn / links | 4.1.13 | 4.1.13.x |
| wsn / links | 4.0.10 | 4.0.10.x |
| wsn / links | 4.0.35 | 4.0.35.x |
| wsn / links | 4.0.24 | 4.0.24.x |
| wsn / links | 4.0.14 | 4.0.14.x |
| wsn / links | 4.0.27 | 4.0.27.x |
| wsn / links | 4.1.19 | 4.1.19.x |
| wsn / links | 4.0.11 | 4.0.11.x |
| wsn / links | 4.1.0 | 4.1.0.x |
| wsn / links | 4.1.17 | 4.1.17.x |
| wsn / links | 4.0.5 | 4.0.5.x |
| wsn / links | 4.1.14 | 4.1.14.x |
| wsn / links | 4.0.2 | 4.0.2.x |
| wsn / links | 4.0.31 | 4.0.31.x |
| wsn / links | 4.1.36 | 4.1.36.x |
| wsn / links | 4.1.27 | 4.1.27.x |
| wsn / links | 4.0.7 | 4.0.7.x |
| wsn / links | 4.0.15 | 4.0.15.x |
| wsn / links | 4.1.42 | 4.1.42.x |
| wsn / links | 4.1.23 | 4.1.23.x |
| wsn / links | 4.0.0 | 4.0.0.x |
| wsn / links | 4.0.25 | 4.0.25.x |
| wsn / links | 4.1.38 | 4.1.38.x |
| wsn / links | 4.1.6 | 4.1.6.x |
| wsn / links | 4.0.18 | 4.0.18.x |
| wsn / links | 4.0.13 | 4.0.13.x |
| wsn / links | 4.1.21 | 4.1.21.x |
| wsn / links | 4.0.32 | 4.0.32.x |
| wsn / links | 4.0.38 | 4.0.38.x |
| wsn / links | 4.1.20 | 4.1.20.x |
| wsn / links | 4.0.40 | 4.0.40.x |
| wsn / links | 4.1.26 | 4.1.26.x |
| wsn / links | 4.1.15 | 4.1.15.x |
| wsn / links | 4.1.16 | 4.1.16.x |
| wsn / links | 4.1.5 | 4.1.5.x |
| wsn / knowledge_base | - | 4.1.36.x |
| wsn / links | 4.1.44 | 4.1.44.x |
| wsn / links | 4.1.37 | 4.1.37.x |
| wsn / links | 4.0.17 | 4.0.17.x |
| wsn / links | 4.1.41 | 4.1.41.x |
| wsn / links | 4.0.21 | 4.0.21.x |
| wsn / links | 4.1.1 | 4.1.1.x |
| wsn / links | 4.0.19 | 4.0.19.x |
| wsn / links | 4.1.28 | 4.1.28.x |
| wsn / links | 4.0.26 | 4.0.26.x |
| wsn / links | 4.0.36 | 4.0.36.x |
| wsn / links | 4.1.22 | 4.1.22.x |
| wsn / links | 4.0.41 | 4.0.41.x |
| wsn / links | 4.0.16 | 4.0.16.x |
| wsn / forum | - | 4.1.43.x |
| wsn / links | 4.1.34 | 4.1.34.x |
| wsn / links | 4.0.23 | 4.0.23.x |
| wsn / links | 4.0.37 | 4.0.37.x |
| wsn / links | 4.1.8 | 4.1.8.x |
| wsn / links | 4.0.3 | 4.0.3.x |
| wsn / links | 4.0.29 | 4.0.29.x |
| wsn / links | 4.1.39 | 4.1.39.x |
| wsn / links | 4.1.12 | 4.1.12.x |
| wsn / links | 4.1.25 | 4.1.25.x |
| wsn / links | 4.1.33 | 4.1.33.x |
| wsn / links | 4.0.8 | 4.0.8.x |
| wsn / links | 4.1.11 | 4.1.11.x |
| wsn / links | 4.1.18 | 4.1.18.x |