2 matches found
CVE-2009-2220
Multiple directory traversal vulnerabilities in Tribiq CMS 5.0.12c, when registerglobals is enabled and magicquotesgpc is disabled, allow remote attackers to include and possibly execute arbitrary files via directory traversal sequences in the templatepath parameter to 1 masthead.inc.php, 2...
PT-2009-2273 · Tribiq · Tribiq Cms
Name of the Vulnerable Software and Affected Versions: Tribiq CMS version 5.0.9a beta Description: The issue allows remote attackers to bypass authentication and gain administrative access. This is achieved by setting the COOKIE LAST ADMIN USER and COOKIE LAST ADMIN LANG cookies. Recommendations:...