Multiple directory traversal vulnerabilities in (1) document.php or (2) insertMyDoc.php in Claroline 1.5.3 up to and including 1.6 Release Candidate 1, and possibly Dokeos, allow remote project administrators to upload arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
claroline claroline 1.5.3 |
||
claroline claroline 1.6_beta |
||
claroline claroline 1.6_rc1 |