Pragyan CMS 'fileget' Parameter Remote File Disclosure Vulnerability

Pragyan CMS is prone to a remote file-disclosure vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to view local files in the context of the webserver process, which may aid in further attacks.

Pragyan CMS 3.0 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus