Mura CMS 'FILEID' Parameter Directory Traversal Vulnerability

Mura CMS is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks.

The issue affects the following:

Mura CMS versions prior to 5.1.498
Mura CMS versions prior to 5.2.2809
Sava CMS 5.2

Other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus