RSS   Vulnerabilities for 'Unak-cms'   RSS

2008-08-10
 
CVE-2008-3568

CWE-22
 

 
Absolute path traversal vulnerability in fckeditor/editor/filemanager/browser/default/connectors/php/connector.php in UNAK-CMS 1.5.5 allows remote attackers to include and execute arbitrary local files via a full pathname in the Dirroot parameter, a different vulnerability than CVE-2006-4890.1.

 

 >>> Vendor: UNAK 2 Products
Unak cms
Unak-cms


Copyright 2024, cxsecurity.com

 

Back to Top