CVE-2017-1000002

2017-07-17T09:18:15
ID CVE-2017-1000002
Type cve
Reporter NVD
Modified 2017-07-27T10:31:35

Description

ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal and file extension check bypass in the Course component resulting in code execution. ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal vulnerability in the Course Icon component resulting in information disclosure.