Directory traversal vulnerability in include/reputation/rep_profile.php in the Reputation plugin 2.2.4, 2.2.3, 2.0.4, and previous versions for PunBB, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the pun_user[language] parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
reputation reputation 2.2.3 |
||
reputation reputation 2.0.4 |
||
reputation reputation |