Directory traversal vulnerability in index.php in Jupiter CMS 1.1.4 and 1.1.5 allows remote attackers to read arbitrary files via “…” sequences terminated by a %00 (null) character in the n parameter.
CPE | Name | Operator | Version |
---|---|---|---|
jupiter_cms | eq | 1.1.4 | |
jupiter_cms | eq | 1.1.5 |