Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and previous versions, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via the sine[config][index_main] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sinecms sinecms 2.1.1 |
||
sinecms sinecms 2.1 |
||
sinecms sinecms 2.2 |
||
sinecms sinecms 2.2.1 |
||
sinecms sinecms 2.0 |
||
sinecms sinecms |
||
sinecms sinecms 2.3.2 |
||
sinecms sinecms 2.3.4 |