CVE-2010-3480

Directory traversal vulnerability in index.php in ApPHP PHP MicroCMS 1.0.1, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:apphp:php_microcms:1.0.1:*:*:*:*:*:*:*

Information

Published : 2010-09-22 13:00

Updated : 2017-08-16 18:32


NVD link : CVE-2010-3480

Mitre link : CVE-2010-3480


JSON object : View

CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

dedicated server usa

Products Affected

apphp

  • php_microcms