Directory traversal vulnerability in index.php in Wonder CMS 2014 allows remote attackers to include and execute arbitrary local files via a crafted theme.
References
Link | Resource |
---|---|
http://rossmarks.uk/portfolio.php | Third Party Advisory |
Configurations
Information
Published : 2017-03-17 07:59
Updated : 2017-03-20 09:58
NVD link : CVE-2014-8704
Mitre link : CVE-2014-8704
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
wondercms
- wondercms