Directory traversal vulnerability in portfolio/css.php in Cyberfolio 7.12.2 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cyberfolio cyberfolio 2.2 |
||
cyberfolio cyberfolio 2.1 |
||
cyberfolio cyberfolio 7.10 |
||
cyberfolio cyberfolio 2.0 |
||
cyberfolio cyberfolio 6.0 |
||
cyberfolio cyberfolio 1.0 |
||
cyberfolio cyberfolio |
||
cyberfolio cyberfolio 7.12 |
||
cyberfolio cyberfolio 1.2 |