CVE-2007-6079 (bcoos) |
|
| BugsAlert Home > CVE-2007-6079 (bcoos) | |
|
Directory traversal vulnerability in include/common.php in bcoos 1.0.10 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xoopsOption[pagetype] parameter to the default URI for modules/news/. NOTE: this can be leveraged by using legitimate product functionality to upload a file that contains the code, then including that file. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6079 Learn more about CVE-2007-6079 (bcoos) |
|
| Tags: cve-2007-6079 bcoos | |
Related Items |
|
|
Banner Management "id" SQL Injection Vulnerability
|
|
|
FrSIRT - Ruby WEBrick Library Remote Information Disclosure Vulnerabilities
|
|
|
Bugtraq: LFI in Tuned Studios Templates
|
|
|
VBS_SOLOW.V
|
|
|
CVE-2008-5163 (the_rat_cms)
|
|
|
CVE-2008-4396 (filealyzer)
|
|
|
VU#804089:Microsoft DirectX SAMI parsing buffer overflow
|
|
