Directory traversal vulnerability in user_portal.php in the Dokeos E-Learning System 1.8.5 on Windows allows remote malicious users to include and execute arbitrary local files via a ..\ (dot dot backslash) in the include parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dokeos e-learning system 1.8.5 |