Directory traversal vulnerability in index.php in My Simple Forum 3.0 and 4.1, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a … (dot dot) in the action parameter.
CPE | Name | Operator | Version |
---|---|---|---|
my_simple_forum | eq | 3.0 | |
my_simple_forum | eq | 4.1 |