Absolute path traversal vulnerability in controlcenter.php in FlatnuX CMS 2011 08.09.2 allows remote administrators to read arbitrary files via a full pathname in the dir parameter in a contents/Files action.
CPE | Name | Operator | Version |
---|---|---|---|
flatnux | eq | 2011892.0.0 |