RSS   Vulnerabilities for 'Mybb hot editor plugin'   RSS

2007-04-10
 
CVE-2007-1906

CWE-Other
 

 
Directory traversal vulnerability in richedit/keyboard.php in eCardMAX HotEditor (Hot Editor) 4.0, and the HotEditor plugin for MyBB, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the first parameter.

 

 >>> Vendor: MYBB 6 Products
MYBB
Devbb
Mybb hot editor plugin
Ajax forum stat
Merge system
New threads


Copyright 2018, cxsecurity.com

 

Back to Top