logo
DATABASE RESOURCES PRICING ABOUT US

S40 0.4.2 CMS Directory Traversal Vulnerability

Description

This module exploits a directory traversal vulnerability found in S40 CMS. The flaw is due to the 'page' function not properly handling the $pid parameter, which allows a malicious user to load an arbitrary file path.