4 matches found
CVE-2015-8358
The CVE-2015-8358 issue affects the Bitrix bitrix.mpbuilder module prior to 1.0.12. A path traversal/PHP File Inclusion vulnerability exists in the work[] parameter used by /bitrix/admin/bitrix.mpbuilder_step2.php, allowing an authenticated remote attacker to include and execute arbitrary local f...
Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion
Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion Advisory ID: HTB23281 Product: bitrix.mpbuilder Bitrix module Vendor: www.1c-bitrix.ru Vulnerable Versions: 1.0.10 and probably prior Tested Version: 1.0.10 Advisory Publication: November 18, 2015 without technical details Vendor...
Bitrix bitrix.mpbuilder Module 1.0.10 - Local File Inclusion
Advisory ID: HTB23281 Product: bitrix.mpbuilder Bitrix module Vendor: www.1c-bitrix.ru Vulnerable Versions: 1.0.10 and probably prior Tested Version: 1.0.10 Advisory Publication: November 18, 2015 without technical details Vendor Notification: November 18, 2015 Vendor Patch: November 25, 2015...
bitrix.scan Bitrix 1.0.3 Path Traversal Vulnerability
bitrix.mpbuilder Bitrix module version 1.0.10 suffers from a local file inclusion vulnerability. Product: bitrix.mpbuilder Bitrix module Vendor: www.1c-bitrix.ru Vulnerable Versions: 1.0.10 and probably prior Tested Version: 1.0.10 Advisory Publication: November 18, 2015 without technical details...