BLOG:CMS Remote File Inclusion

2004-07-18T21:07:43
ID OSVDB:8087
Type osvdb
Reporter Radek Hulán()
Modified 2004-07-18T21:07:43

Description

Vulnerability Description

BLOG:CMS contains a flaw related input validation that may allow an attacker to include remote files allowing arbitrary command execution. No further details have been provided.

Solution Description

Upgrade to version 3.1.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

BLOG:CMS contains a flaw related input validation that may allow an attacker to include remote files allowing arbitrary command execution. No further details have been provided.

References:

Vendor URL: http://blogcms.com/ Vendor Specific Advisory URL Secunia Advisory ID:12097 ISS X-Force ID: 16744