Multiple directory traversal vulnerabilities in admin/minibb/index.php in phpBLASTER CMS 1.0 RC1, when register_globals is enabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) DB, (2) lang, and (3) skin parameters.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2008-11-19T18:00:00
Updated: 2017-09-28T12:57:01
Reserved: 2008-11-19T00:00:00
Link: CVE-2008-5171
JSON object: View
NVD Information
Status : Modified
Published: 2008-11-19T18:11:49.953
Modified: 2017-09-29T01:32:29.727
Link: CVE-2008-5171
JSON object: View
Redhat Information
No data.
CWE