RSS   Vulnerabilities for 'Forum rank system'   RSS

2008-05-14
 
CVE-2008-2227

CWE-22
 

 
Multiple directory traversal vulnerabilities in PHP-Fusion Forum Rank System 6 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the settings[locale] parameter to (1) forum.php and (2) profile.php in infusions/rank_system/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 

 >>> Vendor: Php-fusion 10 Products
Expanded calendar module
Php-fusion
Forum rank system
World of warcraft tracker infusion module
Recepies module
Freshlinks module
The kroax module
Team impact ti blog system module
Members cv module
Phpfusion


Copyright 2024, cxsecurity.com

 

Back to Top