Vulnerabilities

CVE-2008-0513

by Fred · 31/01/2008

Directory traversal vulnerability in parser/include/class.cache_phpcms.php in phpCMS 1.2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to parser/parser.php, as demonstrated by a filename ending with %00.gif, a different vector than CVE-2005-1840.

Date published : 2008-01-31

http://www.securityfocus.com/bid/27495

http://www.securityfocus.com/archive/1/487254/100/0/threaded

Related

Tags: Cybersecurity Alert