CVE-2010-4399

Directory traversal vulnerability in languages.inc.php in DynPG CMS 4.1.1 and 4.2.0, when magicquotesgpc is disabled, allows remote attackers to read arbitrary files via a .. dot dot in the CHGDYNPGSETLANGUAGE parameter to index.php. NOTE: some of these details are obtained from third party...

DynPG 4.2.0 - Multiple Vulnerabilities

DynPG 4.2.0 - Multiple Vulnerabilities Vulnerability ID: HTB22703 Reference: http://www.htbridge.ch/advisory/lfiindynpg.html Product: DynPG Vendor: dynpg.org http://www.dynpg.org/ Vulnerable Version: 4.2.0 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixe...