CVE-2005-0795

2005-03-14T05:00:00
ID CVE-2005-0795
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:32:00

Description

HolaCMS 1.4.9 does not restrict file access to the holaDB/votes directory, which allows remote attackers to overwrite arbitrary files via a modified vote_filename parameter.