VYPR
High severity7.8NVD Advisory· Published Aug 18, 2017· Updated Jun 17, 2026

CVE-2017-10665

CVE-2017-10665

Description

Directory traversal vulnerability in ajaxfileupload.php in Kayson Group Ltd. phpGrid before 7.2.5 allows remote attackers to execute arbitrary code by uploading a crafted file with a .. (dot dot) in the file name.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Phpgrid/Phpgrid2 versions
    cpe:2.3:a:phpgrid:phpgrid:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:phpgrid:phpgrid:*:*:*:*:*:*:*:*range: <=7.2
    • (no CPE)range: <7.2.5
  • Range: <7.2.5

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.