Directory traversal vulnerability in phpi/rss.php in Ourvideo CMS 9.5, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the prefix parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ourvideocms ourvideo cms 9.5 |