Directory traversal vulnerability in includes/controller.php in Pulse CMS Basic prior to 1.2.9 allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the p parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pulsecms pulse cms |
||
pulsecms pulse cms 1.2.7 |
||
pulsecms pulse cms 1.2 |
||
pulsecms pulse cms 1.18 |
||
pulsecms pulse cms 1.17 |
||
pulsecms pulse cms 1.2.4 |
||
pulsecms pulse cms 1.2.3 |
||
pulsecms pulse cms 1.1 |
||
pulsecms pulse cms 1.01 |
||
pulsecms pulse cms 1.2.2 |
||
pulsecms pulse cms 1.2.1 |
||
pulsecms pulse cms 1.0 |
||
pulsecms pulse cms 1.2.6 |
||
pulsecms pulse cms 1.2.5 |
||
pulsecms pulse cms 1.16 |
||
pulsecms pulse cms 1.15 |