CVE-2008-5272 (syndeocms) |
|
| BugsAlert Home > CVE-2008-5272 (syndeocms) | |
|
Multiple directory traversal vulnerabilities in Fred Stuurman SyndeoCMS 2.6.0 allow remote authenticated users to read arbitrary files via a .. (dot dot) in the template parameter to (1) starnet/editors/fckeditor/studenteditor.php; (2) starnet/modules/sn_news/edit_content.php, reached through starnet/index.php; and (3) starnet/modules/sn_newsletter/edit_content.php, reached through starnet/index.php. Original Source: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-5272 Learn more about CVE-2008-5272 (syndeocms) |
|
| Tags: cve-2008-5272 syndeocms | |
Related Items |
|
|
Vuln: Linksys WAG54G2 Web Management Console Remote Arbitrary Shell Command Injection Vulnerability
|
|
|
CVE-2008-2485 (PCPIN Chat)
|
|
|
H-Sphere webshell4 "login.php" Cross-Site Scripting
|
|
|
CVE-2009-3255 (rash)
|
|
|
Boredom Results in Twitter Malware Attack
|
|
|
Postfix epoll File Descriptor Leak Security Issue
|
|
|
Vuln: Oracle Secure Backup CVE-2009-1977 Remote Authentication Bypass Vulnerability
|
|