VYPR
High severity7.8NVD Advisory· Published Oct 4, 2018· Updated Jun 17, 2026

CVE-2018-17984

CVE-2018-17984

Description

An unanchored /[a-z]{2}/ regular expression in ISPConfig before 3.1.13 makes it possible to include arbitrary files, leading to code execution. This is exploitable by authenticated users who have local filesystem access.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Ispconfig/Ispconfiginferred2 versions
    <3.1.13+ 1 more
    • (no CPE)range: <3.1.13
    • (no CPE)range: <3.1.13

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.