Fork-cms : Security Vulnerabilities, CVEs, (Directory traversal)
Directory traversal vulnerability in frontend/core/engine/javascript.php in Fork CMS 3.2.4 and possibly other versions before 3.2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter to frontend/js.php.
Max CVSS
5.0
EPSS Score
0.63%
Published
2012-02-24
Updated
2017-08-29
1 vulnerabilities found