RSS   Vulnerabilities for 'Phpblaster cms'   RSS

2008-11-19
 
CVE-2008-5171

CWE-22
 

 
Multiple directory traversal vulnerabilities in admin/minibb/index.php in phpBLASTER CMS 1.0 RC1, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) DB, (2) lang, and (3) skin parameters.

 


Copyright 2024, cxsecurity.com

 

Back to Top