CuteFlow Multiple Security Vulnerabilities

CuteFlow is prone to multiple vulnerabilities because it fails to sufficiently sanitize user-supplied data and restrict access to restricted files.

Exploiting these issues could allow an attacker to compromise the application, to access or modify data, to gain administrative access to the affected application, to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, to execute arbitrary server-side script code in the context of the webserver process, or to perform restricted actions.

CuteFlow 2.11.2 is vulnerable; other versions may also be affected.


Privacy Statement
Copyright 2010, SecurityFocus