CVE-2007-5491

2007-10-17T19:17:00
ID CVE-2007-5491
Type cve
Reporter cve@mitre.org
Modified 2011-03-08T03:00:00

Description

Directory traversal vulnerability in the translation module (translator.php) in SiteBar 3.3.8 allows remote authenticated users to chmod arbitrary files to 0777 via ".." sequences in the lang parameter. Refer to: http://sitebar.org/downloads.php and http://teamforge.net/viewcvs/viewcvs.cgi/tags/release-3.3.9/doc/history.txt?view=markup for patch information.