Phpcms : Security Vulnerabilities, CVEs, Published In 2008 (Directory traversal)
Directory traversal vulnerability in parser/include/class.cache_phpcms.php in phpCMS 1.2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to parser/parser.php, as demonstrated by a filename ending with %00.gif, a different vector than CVE-2005-1840.
Max CVSS
7.8
EPSS Score
1.54%
Published
2008-01-31
Updated
2018-10-15
1 vulnerabilities found