Directory traversal vulnerability in as/lib/plugins.php in SweetRice 0.5.3 and previous versions allows remote malicious users to include and execute arbitrary local files via .. (dot dot) in the plugin parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
basic-cms sweetrice |
||
basic-cms sweetrice 0.5.2 |
||
basic-cms sweetrice 0.4.4 |
||
basic-cms sweetrice 0.4.2 |
||
basic-cms sweetrice 0.4.1 |
||
basic-cms sweetrice 0.3.0 |
||
basic-cms sweetrice 0.2.0 |
||
basic-cms sweetrice 0.4.0 |
||
basic-cms sweetrice 0.2.1 |