CVE-2007-1149

2007-03-02T21:18:00
ID CVE-2007-1149
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:36:00

Description

Multiple directory traversal vulnerabilities in LoveCMS 1.4 allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the step parameter to install/index.php or (2) the load parameter to the top-level URI.