Directory traversal vulnerability in combine.php in OSClass prior to 2.3.6 allows remote malicious users to read and write arbitrary files via a .. (dot dot) in the type parameter. NOTE: this vulnerability can be leveraged to upload arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
juan ramon osclass 2.1.1 |
||
juan ramon osclass 2.1 |
||
juan ramon osclass 2.2.1 |
||
juan ramon osclass 1.2 |
||
juan ramon osclass |
||
juan ramon osclass 2.2 |
||
juan ramon osclass 2.3.3 |
||
juan ramon osclass 2.0 |
||
juan ramon osclass 2.2.3 |
||
juan ramon osclass 2.2.2 |
||
juan ramon osclass 2.3.2 |
||
juan ramon osclass 2.3.4 |
||
juan ramon osclass 2.0.2 |
||
juan ramon osclass 2.0.3 |
||
juan ramon osclass 2.3.1 |
||
juan ramon osclass 2.3 |
||
juan ramon osclass 1.1 |
||
juan ramon osclass 2.0.1 |