Directory traversal vulnerability in skysilver/login.tpl.php in phpSkelSite 1.4, when register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via directory traversal sequences in the TplSuffix parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpskelsite phpskelsite 1.4 |