Directory traversal vulnerability in core/lib/router.php in LotusCMS Fraise 3.0, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via the system parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
lotuscms fraise 3.0 |