RSS   Vulnerabilities for 'Mybb hot editor plugin'   RSS

2007-04-10
 
CVE-2007-1906

CWE-Other
 

 
Directory traversal vulnerability in richedit/keyboard.php in eCardMAX HotEditor (Hot Editor) 4.0, and the HotEditor plugin for MyBB, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the first parameter.

 

 >>> Vendor: MYBB 8 Products
MYBB
Devbb
Mybb hot editor plugin
Ajax forum stat
Merge system
New threads
Ban list
Trash bin


Copyright 2024, cxsecurity.com

 

Back to Top