Directory traversal vulnerability in ArsDigita Community System (ACS) 3.4.10 and previous versions, and ArsDigita Community Education Solution (ACES) 1.1, allows remote malicious users to read arbitrary files via .%252e/ (double-encoded dot dot slash) sequences in the URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arsdigita arsdigita community education solution 1.1 |
||
arsdigita arsdigita community system |