CVE-2023-53944 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

EasyPHP Webserver 14.1 contains a path traversal vulnerability that allows remote users with low privileges to access files outside the document root by bypassi…
High CVSS: 7.1

CVE-2023-53944

EasyPHP Webserver 14.1 contains a path traversal vulnerability that allows remote users with low privileges to access files outside the document root by bypassing SecurityManager restrictions. Attackers can send GET requests with encoded directory traversal sequences like /..%5c..%5c to read system files such as /windows/win.ini.
Vendor
Easyphp
Product
Webserver
CWE
CWE-22
Yayın Tarihi
2025-12-18 20:15:53
Güncelleme
2025-12-26 16:55:30
Source Identifier
disclosure@vulncheck.com
KEV Date Added
-

Kategoriler

CWE-22 Webserver HIGH Easyphp 2025

Referanslar

https://www.easyphp.org/ https://www.exploit-db.com/exploits/51430 https://www.vulncheck.com/advisories/easyphp-webserver-path-traversal-via-directory-traversal-sequences https://www.exploit-db.com/exploits/51430