Directory traversal vulnerability in lib/functions/d-load.php in Horizon Quick Content Management System (QCMS) 4.0 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the start parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
horizon quick content management system project horizon quick content management system |
||
horizon quick content management system project horizon quick content management system 3.5.2 |
||
horizon quick content management system project horizon quick content management system 3.5.1 |
||
horizon quick content management system project horizon quick content management system 3.4 |
||
horizon quick content management system project horizon quick content management system 3.3 |
||
horizon quick content management system project horizon quick content management system 3.2 |