Absolute path traversal vulnerability in includes/functions_portal.php in IntegraMOD Portal 2.x and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to read arbitrary files via an absolute pathname in the phpbb_root_path parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
integramod integramod portal 2.0 |