Kai Content Management System CVE-2007-2106 File-Upload Vulnerability

Kai Content Management System CVE-2007-2106 File-Upload Vulnerability

Kai Content Management System is prone to a file-upload vulnerability. Directory traversal vulnerability in index.php in Kai Content Management System (K-CMS) 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the current_theme parameter.