Directory traversal vulnerability in Open-Realty CMS 2.5.8 and previous versions allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the select_users_template parameter to index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open-realty open-realty 2.3.4 |
||
open-realty open-realty 2.3.1 |
||
open-realty open-realty |