Directory traversal vulnerability in index.php in Pakupaku CMS 0.4 and earlier allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the page parameter, as demonstrated by injecting code into an Apache log file.
CPE | Name | Operator | Version |
---|---|---|---|
pakupaku_cms | le | 0.4 |