Directory traversal vulnerability in class2.php in e107 0.7.5 and previous versions allows remote malicious users to read and execute PHP code in arbitrary files via ".." sequences in the e107language_e107cookie cookie to gsitemap.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
e107 e107 0.7.5 |