Directory traversal vulnerability in phpi/rss.php in Ourvideo CMS 9.5, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the prefix parameter.
CPE | Name | Operator | Version |
---|---|---|---|
ourvideo_cms | eq | 9.5 |