CVE-2007-6552 (AuraCMS) |
|
| BugsAlert Home > CVE-2007-6552 (AuraCMS) | |
|
Directory traversal vulnerability in index.php in AuraCMS 2.2 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the act parameter, possibly involving the news pilih component; as demonstrated by including admin/admin_users.php to bypass a protection mechanism against direct request. Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6552 Learn more about CVE-2007-6552 (AuraCMS) |
|
| Tags: cve-2007-6552 auracms | |
Related Items |
|
|
CVE-2008-3968 (punbb)
|
|
|
Microsoft Office Publisher
|
|
|
CVE-2008-0011 (DirectX)
|
|
|
CVE-2008-3972 (opensc)
|
|
|
Mandriva: Updated wpa_supplicant package fixes remote
|
|
|
TROJ_ZEROML.BB
|
|
|
CVE-2007-4674 (Quicktime)
|
|
