RSS   Vulnerabilities for 'Hot editor'   RSS

2007-04-10
 
CVE-2007-1906

CWE-Other
 

 
Directory traversal vulnerability in richedit/keyboard.php in eCardMAX HotEditor (Hot Editor) 4.0, and the HotEditor plugin for MyBB, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the first parameter.

 

 >>> Vendor: Ecardmax.com 3 Products
Atcard me php
Hot editor
Formxp


Copyright 2024, cxsecurity.com

 

Back to Top