RSS   Vulnerabilities for 'Edcontainer'   RSS

2009-01-02
 
CVE-2008-5818

CWE-22
 

 
Directory traversal vulnerability in index.php in eDreamers eDContainer 2.22, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lg parameter. NOTE: some of these details are obtained from third party information.

 

 >>> Vendor: Edreamers 2 Products
Edcontainer
Ednews


Copyright 2024, cxsecurity.com

 

Back to Top