2 matches found
CVE-2016-10759
The Xinha plugin in Precurio 2.1 allows Directory Traversal, with resultant arbitrary code execution, via ExtendedFileManager/Classes/ExtendedFileManager.php because ExtendedFileManager can be used to rename the .htaccess file that blocks .php uploads...
Precurio Software Precurio Xinha Plugin Path Traversal Vulnerability
Precurio Software Precurio is a suite of enterprise open collaboration business solutions from Precurio Software, Inc. The Xinha plugin is an editor plug-in. A path traversal vulnerability exists in Precurio Software Precurio version 2.1 of the Xinha plugin. The vulnerability stems from a failure...