Directory traversal vulnerability in error.php in Envolution 1.1.0 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the PNSVlang (PNSV lang) parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by error.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
envolution envolution 1.1.0 |